The ISO 27000 Family of Standards & the GDPR: Identifying Overlap and Streamlining Efforts presented at InfoSecurityDenmark 2020

by Jacob Eborn,

Summary : Together, security and privacy teams share a common goal: Protect the organization from reputational damage, lawsuits, and regulatory trouble. On one hand, ISO 27001 focuses on the assessment of risks and protection of the organization and ISO 27701 focuses on Privacy Information Management Systems. On the other, the GDPR aims to assess and protect the rights and freedoms of individuals. With a joint goal in mind, it is crucial that security and privacy teams work together to develop a common language that produces greater productivity and takes advantage of collective efforts. In this session, OneTrust share how the ISO 27000 family of standards and the GDPR overlap, as well as how security and privacy teams can work together to become more effective.