We inform you that the International Organization for Standardization (ISO) has published a guide called ISO/IEC 27001:2022, Information Security Management Systems - A practical guide for small and medium-sized enterprises (SMEs).

The guide is useful for small and medium-sized enterprises (SMEs) to develop and implement an information security management system to protect against cyber risks.

ISO/IEC 27001 provides organizations with guidance on establishing, implementing, maintaining and continually improving an ISMS. It defines requirements for an ISMS and helps organizations secure their information assets by identifying and managing risks.

Data theft, cybercrime and liability for privacy leaks are risks that all organizations need to address. Implementing ISO/IEC 27001, the world’s leading standard for ISMSs, helps SMEs reduce their vulnerability to the growing threat of cyber-attacks and respond to evolving security risks.

The guide is published in English.

You can buy the guide through the Institute for Standardization of Bosnia and Herzegovina.