How to implement business impact analysis (BIA) according to ISO 22301
Dejan Kosutic
I’ve spoken to many business continuity practitioners, and most of them (both beginners and experts) are telling me that the...
I’ve spoken to many business continuity practitioners, and most of them (both beginners and experts) are telling me that the most difficult part of ISO 22301 implementation is the business impact analysis. So, here are...
ISO 22301 benefits: How to get your management’s approval for a business continuity project
If you think your management loves to listen to you talk about your great idea for a disaster recovery site,...
If you think your management loves to listen to you talk about your great idea for a disaster recovery site, or a perfect tool you’ve discovered for handling business continuity plans, you’re wrong – they...
What is the job of Chief Information Security Officer (CISO) in ISO 27001?
It may sound rather funny, but ISO 27001 does not require a company to nominate a Chief Information Security Officer,...
It may sound rather funny, but ISO 27001 does not require a company to nominate a Chief Information Security Officer, or any other person who would coordinate information security (e.g., Information security officer, Security manager,...
Asset management according to ISO 27001: How to handle an asset register / asset inventory
Updated: January 04, 2023, according to ISO 27001:2022 revision. Unfortunately, if you already developed a fixed asset register, it is not...
Updated: January 04, 2023, according to ISO 27001:2022 revision. Unfortunately, if you already developed a fixed asset register, it is not going to be enough to be compliant with ISO 27001 – the concept of asset inventory (sometimes...
Seven steps for implementing policies and procedures
Have you ever found yourself in a situation where you have been given the task to write a security policy...
Have you ever found yourself in a situation where you have been given the task to write a security policy or a procedure? But you don’t want your document to end up like so many...
All you need to know about setting the ISO 27001 scope
All you need to know about setting the ISO 27001 scope Dejan Kosutic Table Of Content What is the purpose...
All you need to know about setting the ISO 27001 scope Dejan Kosutic Table Of Content What is the purpose of the ISMS scope? The requirements of ISO 27001 regarding the scope What are interfaces...
