For developing an ISMS, the first step is to define the scope of the ISMS in terms of the organisational …
iso 27001
Common ISO 27001 Gaps
This article is based on a review of 20 gap audit reports for a variety of organizations, including public sector …
Overview of ISO/IEC 27001: 2013
The international standard ISO/IEC 27001 is an ISMS set of requirementsfor establishing, implementing, deploying, monitoring, reviewing, maintaining, updating and improving …
Second Edition of ISO/IEC 27002
At the same time that ISO/IEC 27001 was being revised, so was the standard ISO/IEC 27002 code of practice for …
ISMS Business Context
Before embarking on the development and implementation of an ISMS, it is important to understand your organisation, its context and …
Cybersecurity for Everyone, Not Just the IT Department
Cybersecurity is for everyone, not just the IT department. All the time and capital you’ve invested in a robust security plan means nothing if human error is not addressed. Protect your company, your employees and your security investment by ensuring everyone in your organization is executing best practices when it comes to information security.
Five reasons why start-ups should care about ISO 27001
You might argue that effective defences, particularly those in line with the best practices described in ISO 27001, are a lot of hard work and red tape that don’t help you turn a profit.
But you’d be wrong. Here are five reasons why.
Infographic: List of data breaches in 2018
2018 saw some of the biggest data breaches yet, with Marriott, Under Armour and Facebook suffering breaches that affected 500 million, 150 million and 100 million people respectively.
It was also the year of the GDPR (General Data Protection Regulation), which changed the way organisations handle customers’ personal data and introduced hefty fines for non-compliance.
However, the Regulation didn’t seem to reduce the number of data breaches: there were approximately 2.3 billion last year, compared to 826 million in 2017…….
ISO 27001 certification minimizes the risk of cyber-attacks
The ISO 27001 information security management system provides your organisation with a framework for improving and managing your valuable data. …
Cyber Security Still Top of The Business Risk Agenda
Following investigation by the Information Commissioner’s Office (ICO) of last year’s British Airways data breach, where credit card details, travel …