ISO 27001
The ISO 27001 is a standard that enables organizations to establish an information security management system (ISMS) and apply a risk management processes. This ISMS enforced by ISO 27001, describes the controls, processes, and procedures that the company has to put in place to ensure the CIA (confidentiality, integrity, and availability) of the data in its possession. ISO 27001 broadly caters to goverment agencies, IT and finance industries. However, it is also applicable to organizations of any size and industry. Zeron provides a total of 114 controls classified under 14 categories for the ISO 27001 framework. The page for this module is made up of the following sections:
- Dashboard
- Controls
- Policies
(This page only provides an overview. To know more in-depth about each section, please click here.)
Dashboard
An overview of the total number of controls and the percentage of those applied by the user can be seen in the ‘Dashboard’ section.
Controls
The ‘Controls’ section provides the user with more details such as implementation guidance, recommended tools and category for each of the 114 controls under this framework.
Zeron also provides a table of ‘Recent Risks’ for all the controls that have been implemented.
Policies
The ‘Policies’ section helps in tracking the implementation of the controls. It is made up of two subsections:
| Uploaded Policies | Pending Policies |
|---|---|
| Contains the list of controls that have been implemented to date. | Contains the list of controls that haven’t been implemented yet. |
| Used for editing or viewing the implemented controls. | Used for implementing new controls. |
 |  |
Clicking on a particular control provides more information about it.
To implement a new control, go to the ‘Pending Policies’ section and click on the edit icon on the right-hand side of the control you wish to implement.
Fill in the given form to successfully implement the control.
