Information Security

Information security (IS) is essential for protecting an organization’s assets, data, and information from unauthorized access, breaches, and other threats. It involves implementing measures to safeguard sensitive information and ensure its confidentiality, integrity, and availability. GRC concepts play a crucial role by establishing frameworks for managing risks, ensuring adherence to regulations, and maintaining organizational policies. Effective GRC practices help organizations identify vulnerabilities, mitigate risks, and maintain a robust security posture. Examples of IS controls include firewalls, encryption, multi-factor authentication, and intrusion detection systems.

SimpliGRC offers virtual, in-person, e-learning and self-study options for IS training. The PECB courses are available in different languages which may not be currently available as an option on our website. Contact us if you prefer a different language and we will determine if PECB has the desired course.

Information Security

ISO/IEC 27001 Information Security Management System

ISO/IEC 27002 Information Security Controls