PLEASE SHARE

   
 
13 Oct 2020

ISO 27009: 2016 Sector-specific application of ISO 27001

internal auditor, ISMS, lead auditor, lead implementer, iso 27001

    Of benefit to developers of sector-specific guidelines to the application of ISO 27001 Daily stories in the media confirm that there is no organization, no matter how big or small, nor what sector it works in, that isn't susceptible to cyber security breaches. with phishing attacks leading to ransom demands at an all time high.  All information is valuable both to your own organization and to ...
Read More
13 Oct 2020

If you manage a QMS, don't take a Lead Auditor Course!

auditing skills, certified training company, EMS, ISMS, lead auditor, lead implementer, MDMS, QMS, iso 9001, iso 14001, iso 45001, e-learning, iso 13485, iso 27001, OHSMS

You’re thinking, "But this is what Management Representatives have been doing for decades. Why shouldn't I take a lead auditor course?"
Read More
27 Sep 2020

Information Security Standards other than ISO 27001

internal auditor, ISMS, risk management, iso 27001

Many data security standards other than ISO 27001 remain in common use
Read More
18 Aug 2020

Why have an ISMS - Information Security Management System?

auditing skills, certified training company, ISMS, lead auditor, risk management, e-learning, iso 27001

Read More
16 Jul 2020

Why ISO 27001 matters to SMEs

iso certification, ISMS, risk management, OH&S, information securuty

Even the smallest organization has a lot to gain from a certified Information Security Management System (ISMS) New businesses often ponder the benefits of ISO 27001 Certification and, being busy with startup priorities, postpone certification until it is asked for in a tender document or by a prospective customer.  At that point it is, of course, too late. Optimistically, it takes a minimum of 5 ...
Read More
13 Jan 2020

[Video] The dangers of a Phishing Attack

ISMS, iso 27001, information security

Recommended as part of Day-1 Induction Training for new recruits A cyber attack can destroy a business. Whether that attack is a Denial-of-Service, deletion of files, a ransom ware attack or other attack, the most frequent event they all have in common is human failure. And currently the most common human failure is becoming victim to a Phishing eMail. From the moment anyone has access to a ...
Read More
17 Dec 2019

Navigating the ISO 27000 Series of Standards

iso certification, ISMS, risk management, iso 27001, information security

 
Read More
18 Oct 2019

Audit Evidence for ISO 27001 Annex A Compliance

iso certification, ISMS, risk management, iso 27001, information security

 
Read More
23 Aug 2019

ISO 27701 brings the total of ISO 27000 series Standards to 47

internal auditor, ISMS, risk management, iso 27001, gdpr

Launched in August: ISO 27701:2019 Security Techniques – extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management – requirements and guidelines The ISO 27701 is the highly anticipated standard that is expected to be the first privacy management certification to get mainstream adoption and may serve as a basis for upcoming GDPR certifications. The new standard recommends ...
Read More
26 Jun 2019

GDPR and ISO 27001: a natural combination

internal auditor, ISMS, risk management, iso 27001, gdpr

Passive compliance with GDPR won’t ‘cut it’ Many organizations spent much time and money in 2018 on compliance with General Data Protection Regulation - GDPR, and not only those based in the EU.  But what actions now to ensure ongoing compliance? It’s not enough to have policies and procedures to demonstrate that you comply with requirements.  If there is a data breach or similar event, you will ...
Read More