What is ISO 27001: 2013 Information Security Management System?
The ISO 27001: 2013 Information Security Management System (ISMS) standard covers all types of organizations (eg commercial organizations, government agencies, non-profit organizations).
ISO 27001: 2013 Information Security Management System covers the requirements for establishing, implementing, monitoring, reviewing, maintaining and improving a documented ISMS (Information Security Management System) in the context of all commercial risks of the organization.
ISO 27001: 2013 Information Security Management System (ISMS) is designed to provide adequate and proportionate security controls that protect information assets and reassure interested parties.
Organizations wishing to obtain ISO 27001: 2013 Information Security Management System certificate should receive Consultancy Service to meet the general requirements of ISO 27001 Information Security Management System standard and must pass the audit of Accredited Organizations successfully. Organizations may have ISO 27001: 2013 Information Security Management System certificate after this audit.
At Eskisehir Osmangazi University
ISO 27001: 2013 Information Security Management System (ISMS) Process
The studies on the ISMS process were initiated on 1 August 2018 within the Department of Information Technology. A work calendar and ISMS team have been established in the studies that have been started. Within the scope of ISO 27001: 2013 Information Security Management System studies within ESOGÜ CC, an Information Security Team was formed and the team was assigned with the following roles.
1. ISMS Manager : Branch manager Sevinç ÇOLAK
2. ISMS management representative : Engineer Dilek ÇELİK
3. network and system administrator: Lecturer Ufuk SALTAN
4. Software Unit Specialist : Lecturer Mert IŞIK
ESOGÜ ISMS policy has been established and announced on the ESOGU main web site and on the web page of the Department of Data Processing. Information Security Awareness Training was given to all personnel at the congress center on 6 September 2018. ISMS studies were completed in July 2019. As a result of the external audit passed, the IT Department was entitled to receive ISO 27001 certificate as of 14.07.2019.