Analyzing ISO 27001:2022 Achieve Privacy and Security Compliance with Automation

Presented by

Jitendra Juthani, Dir. of Information Security and Risk, onetrust | Vincent Tham, Senior Solutions Engineer, onetrust

About this talk

Privacy best practices are rooted in security standards such as ISO 27001, the globally recognized and adopted InfoSec framework which was recently updated this year for the first time in almost 10 years! While proving security compliance can help reinforce privacy accountability and grow your business, it is also a robust undertaking that can quickly consume vital security resources. Between researching requirements, implementing controls, and getting “audit-ready” maintaining InfoSec compliance has never been more complicated, but it doesn’t have to be. Invite your InfoSec counterparts and join our team as we summarize some of the most impactful changes and identify how they can apply to your business and scale efficiencies across teams! During this session, we’ll showcase our certification automation solution with a first-hand demonstration. Learn how InfoSec teams can automate scoping mandatory requirements, simplify assessing risk, and streamline generating evidence to prove compliance across ISO and related security frameworks to fast-track your team’s audit prep and certification. Key takeaways Understand what’s changed and how this may impact previously scoped ISO certifications. Review how automation and tailored guidance can streamline compliance projects at scale across multiple business units and products throughout your organization. Eliminate duplicative efforts through contextual mapping across multiple frameworks for shared requirements.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (6)
Subscribers (6428)
OneTrust Certification Automation helps businesses demystify compliance with built-in content and expert guidance. Test once, comply with many with our proprietary share evidence framework, and fast-track the external audit process with centralized oversight for internal and external stakeholders.