URM ULTIMA RISK MA NA GEMENT Business Drivers For many organisations, the business drivers behind achieving ISO 27001 certification are externally based e.g. mandated by customers. This was not the case with JHP , where the motivation was driven from a desire to build on its existing strong controls and to continuously improve its information security practices through more centralised management. As an organisation within the financial sector, JHP is heavily audited by its larger clients and the Financial Conduct Authority (FCA), as well as undertaking internal audits overseen by IFG. As information security processes were being constantly audited, JHP made a conscious decision to adopt a more proactive ‘front foot’ approach. The initiative stemmed initially from the IFG IT

Join for free to read