Information Security Management System ISO/IEC 27001 is a unique standard for information security encompassing all requirements for information security including Confidentiality, Integrity and Availability. It provides a comprehensive set of controls to address all issues related to information security. ISO/IEC 27001 aims to provide a common basis for developing organizatiotnal security standards, effective security management practice and provide confidence in inter-organizational and intra-organizational information exchange. IAT with highly qualified resources and competencies has been assisting many organizations to establish ISMS and eventually certified by ISO 27001. We have successfully conducted ISMS training for public as well as in-house to help organization devoted with the standards and controls within
The enactment of Personal Data Protection (PDP) Act 2010 (Act 709) has practically changed business and corporate landscapes in Malaysia. The Act tasks the commercial data users with series of obligations in dealing with personally identifiable information (PII), to the extent that data users should now realize that personal information cannot be handled the same way like other types of commercial data assets. The ultimate goal is to create a more accountable and responsible business environment in Malaysia. Besides, the PDP Act 2010 clearly spells out the rights of data subjects concerning the collection, processing, exploitation and retention of their personal data. Therefore, the impact of PDP Act 2010 is massive and far-reaching: Ranging from Human Resources matters to financial administration, from IT governance to data audit, and from marketing to customer relationship management (CRM).