Obstructions of Turkish Public Organizations Getting ISO/IEC 27001 Certified
Tolga Mataracioglu, Sevgi Ozkan Yildirim
TL;DR
This paper analyzes the conflicts between Turkish public organizations' legal obligations and ISO/IEC 27001 standards, identifying inconsistencies and proposing solutions to facilitate certification.
Contribution
It provides a detailed comparison of Turkish civil service laws with ISO/IEC 27001 requirements and offers solutions to align legal frameworks with certification standards.
Findings
Identified key legal inconsistencies hindering ISO/IEC 27001 certification
Proposed solutions to align civil service laws with ISO standards
Highlighted areas requiring legal and procedural adjustments
Abstract
In this paper; a comparison has been made among the Articles contained in the ISO/IEC 27001 Standard and the Articles of the Civil Servants Law No 657, which should essentially be complied with by the personnel employed within the bodies of public institutions in Turkey; and efforts have been made in order to emphasize the consistent Articles; and in addition, the matters, which should be paid attention by the public institutions indenting to obtain the ISO/IEC 27001 certificate for the Articles of the Civil Servants Law No 657 which are not consistent with the ISO/IEC 27001 certification process, have been mentioned. Furthermore, solution offers have been presented in order to ensure that the mentioned Articles become consistent with the ISO/IEC 27001 certification process.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsQuality and Management Systems