This project demonstrates the implementation of an Information Security Management System (ISMS) based on ISO/IEC 27001 standards.
The implementation is performed for a simulated fintech company, FinSecure Analytics Ltd, which processes sensitive financial and personal data.
- Understand ISO 27001 requirements
- Simulate real-world ISMS implementation
- Develop practical documentation (risk assessment, policies, controls)
- 01-Company-Profile → Organisation context
- 02-ISMS-Scope → Scope definition
- 03-Risk-Assessment → Risk identification and evaluation
- 04-Risk-Treatment → Control implementation
- Risk Management
- ISO 27001 Implementation
- Security Controls (Annex A)
- GRC (Governance, Risk, Compliance)