"Finally, an app on legal information with a modern, intuitive interface."
Information security management—straightforward and digital
Don't leave your IT security to chance
Modern IT systems not only manage countless pieces of information, but also protect them from unwanted data misuse and other cyber-attacks. With a digital information security management system (ISMS) in Ninox, you have a database at your disposal to map the requirements according to ISO standard 27001. Make security standards the fundamental premise of your IT infrastructure.
IT experts rely on Ninox
Information security according to international standards
Security strategies are necessary for companies, but can quickly become a challenge without the necessary know-how. ISO standards regulate the procedure, but are confusing bureaucracy for non-experts. With Ninox, information security management according to international standards is at your disposal. Manage critical infrastructures in a central platform and map your processes digitally with ease.
The advantages of the Ninox ISMS solution
Managing cybersecurity with the help of checklists sounds tempting. In reality, however, you lose the overview and no longer know which information is in which list. With a central database, that won't happen to you.
Define information security policies in digital form.
Protect yourself from unwanted cyber threats according to ISO standard 27001.
Benefit from an integrated data protection and risk management system.
Evaluate your information security through key performance indicator reports.
How our customers use Ninox
„
With Ninox, our customers manage essential EHS aspects in a simple and clear way. You can 'sleep easy' knowing you are in control of your risks.
”
"With Ninox, we've created digital data protection solutions for ourselves based on our own way of working, customized and adaptable."
"Ninox gives us quick, easy access to exactly the features we really need as a law firm on a day-to-day basis."
FAQ
You still have questions? Here you will find answers to the most important questions:
What is an ISMS?
An information security management system (ISMS) is a database in which all policies, procedures, measures and tools relating to the security of the IT infrastructure are documented. It is implemented according to the top-down approach. Strategic decisions are therefore made at management level. The IT security measures are implemented by IT and data protection officers.
What does an ISMS according to ISO 27001 mean?
Information security management systems are standardized according to the international standard ISO 27001. The standard regulates the review of IT security. To this end, processes are first analyzed and potential risks are derived. How the risks are responded to is then documented in the ISMS in order to manage crisis situations efficiently. The documentation of the derived procedures is accepted by an appropriate inspection body in order to finally certify the information security management system.
The main criteria of ISO 27001 are:
• responsibilities and role distribution access controls
• audit of suppliers
• safety level as well as competence level of employees
• dealing with day-to-day security standards
• incident management
• business continuity management
How often must a certification audit be performed?
To ensure continuous security management, ISMS must be reviewed every three years with a certification audit. In between, less extensive surveillance audits take place. These must be performed annually. The audits ensure that all security criteria and guidelines continue to be met.