A Practical Evaluation of Remote Work Issues and the SolarWinds Breach Using the ISO/IEC 27001 Cybersecurity Framework and the ISO/IEC 27002 Guidelines

Donald L. Buresh, Ph.D., J.D., LL.M.

Abstract


This article outlines the ISO/IEC 27001 framework and the ISO/IEC 27002 guidelines, focusing on their application to two cybersecurity issues. In light of the Covid-19 pandemic, remote work has become commonplace. The factors regarding remote work have led organizations to address the cybersecurity vulnerabilities associated with the activity. ISO/IEC 27001 is one such framework that can effectively mitigate the effects of a cyber-attack. The SolarWinds breach is another example that is discussed in this article. The piece demonstrates that had SolarWinds Corp. implemented the ISO/IEC 27001 framework, the effects of the breach could have been significantly mitigated. The result is that the ISO/IEC 27001 framework is an effective mechanism for alleviating the negative consequences of a cyber-attack.


Full Text:

PDF


DOI: https://doi.org/10.22158/sssr.v3n2p75

Refbacks

  • There are currently no refbacks.


Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 International License.

Copyright © SCHOLINK INC.   ISSN 2690-0793 (Print)    ISSN 2690-0785 (Online)