Terms of Reference 

INTRODUCTION

  1. Responding to demands from the international community over the last fifteen years for best practice and certification of information security management, ISO/IEC 27001 and the supporting family of ISO/IEC 27000 ISMS standards have developed and evolved.  The application and use of these standards has been taken up by organisations small, medium and large in many parts of the world.  These standards are being used as a “common language” for information security management best practice.
  2. The International User Group (IUG) was established in 1997 to facilitate a means of sharing experiences in the use of the BS 7799 standards now these standards form part of ISO/IEC 27001 and the supporting family of ISO/IEC 27000 ISMS standards.
  3. These Terms of Reference (ToR) outline the role, membership and other relevant information about the IUG.  Further information about the IUG is posted on the home pages of the IUG.

ROLE OF THE  IUG

  1. The International User Group (IUG), is a business-led, international network of users of ISO/IEC 27001 and the supporting family of ISO/IEC 27000 ISMS standards. The aims of the IUG are:

Promotion To promote and disseminate the application of best practice, and know-how of good information security management based on the use of ISO/IEC 27001 and the supporting family of ISO/IEC 27000 ISMS standards.

Awareness  To promote awareness and understanding of ISMS standards, certification and developments for the benefit of business globally.

Networking To provide a forum through which the members of the IUG can network with each other, independent of the Group’s activities.

Information Exchange To provide a platform through which the members of the IUG can provide their views and exchange working experiences regarding the process of establishing, implementing and maintaining an information security management system (ISMS) and its certification based on the use of ISO/IEC 27001 and to learn from those that are already gone through the process.

Research and Collaboration   To collect together via common interest groups views and ideas, to research building ISMS solutions, and develop briefing papers on related ISMS topics.

  MEETINGS

  1. In order to promote the widest possible take-up of ISO/IEC 27001 and the supporting family of ISO/IEC 27000 ISMS standards in businesses, the activities of the IUG, where appropriate, will be of a regional and international nature rather than any specific national activity. 
  2. The IUG will have meetings and workshops as and when necessary to conduct business of a general or project driven nature (e.g. user group revision of a standard). 
  3. The IUG/SIGs will have meetings and workshops to develop the work in their specific areas of interest.
  4. The IUG Chapters will have meetings as and when necessary to conduct business at the local/national level.

 ORGANISATION

  1. To help with the co-ordination of the research, collaborative networking and other related IUG activities are  established and arranged as and when necessary. 
  2. IUG Chapters are set up that network locally at the national level and through the IUG.  Currently there exist IUG Chapters in many countries.  The home web page of the IUG gives the current list of these together with the local Chapter contact points.

 

SPECIAL INTEREST GROUPS

  1. The IUG will set up from time to time Special Interest Groups (SIGs) to act as focal points for the exchange of ideas on specific topics related to the application of ISO/IEC 27001 and the supporting family of ISO/IEC 27000 ISMS standards.  Past SIGs have included (see IUG for the most up to date list): (i) Corporate Governance, (ii) E-commerce and e-business, and (iii) Basics of risk assessment.

 MEMBERSHIP

  1. Any organisation that uses, or is thinking of using ISO/I/IEC 27001 and the supporting family of ISO/IEC 27000 ISMS standards
  2. in their business activities, in the private or public sector, is eligible to join.  The IUG is principally designed for those people who are responsible for planning, developing, implementing, maintaining and auditing information security management.
  3. Membership of the IUG is free, although individual Chapters may charge locally for attendance at particular events. 
  4. Members must agree not to make unsolicited approaches to other members in pursuit of the business carried on by them.  
  5. Categories of membership: (i) Member of one or more of specific research and collaborative groups the SIGs.

 APPLICATION TO JOIN

  1. To join an IUG Chapter then apply via the contact given on the IUG home web page. 

Questions or problems regarding this web site should be directed to info@iso27001certificates.com  
Copyright © ISMS International User Group, 1997 - 2009, All rights reserved.