Risk appetite and its influence over ISO 27001 implementation
Clause 6.1.2 (a) (1) of ISO 27001:2013 states that an organization must establish and maintain information security risk criteria, and those...
Clause 6.1.2 (a) (1) of ISO 27001:2013 states that an organization must establish and maintain information security risk criteria, and those must include criteria for risk acceptance. Since these criteria have direct influence on how organizational...
NIST Cybersecurity Framework or ISO 27001 – Which is the better choice for your company?
On February 12, 2014, the National Institute of Standards and Technology (NIST) published Framework for Improving Critical Infrastructure Cybersecurity, commonly...
On February 12, 2014, the National Institute of Standards and Technology (NIST) published Framework for Improving Critical Infrastructure Cybersecurity, commonly known as Cybersecurity Framework. If you already came across ISO 27001, you’re probably wondering: What...
Understanding the ISO 27001 controls from Annex A
Updated: December 12, 2022., according to the ISO 27001:2022 revision. Annex A of ISO 27001 is probably the most famous...
Updated: December 12, 2022., according to the ISO 27001:2022 revision. Annex A of ISO 27001 is probably the most famous annex of all the ISO standards – this is because it provides an essential tool...
How to define context of the organization according to ISO 27001
Updated: November 14, 2022, according to the ISO 27001:2022 revision. ISO 27001 clause 4.1, which requires the identification of the...
Updated: November 14, 2022, according to the ISO 27001:2022 revision. ISO 27001 clause 4.1, which requires the identification of the organizational context, may cause some confusion, because it is rather vague. What must you consider...
ISO 22301:2019 List of mandatory documents
Updated according to ISO 22301:2019. What should your business continuity documentation contain? What are the ISO 22301 mandatory documents? This...
Updated according to ISO 22301:2019. What should your business continuity documentation contain? What are the ISO 22301 mandatory documents? This is probably what you’re asking yourself if you are implementing ISO 22301, preparing for the...
How to implement ISO 22301 in 17 steps
Updated 2022-04-25. Implementing business continuity is certainly not an easy task, so I hope this list of 17 steps will...
Updated 2022-04-25. Implementing business continuity is certainly not an easy task, so I hope this list of 17 steps will help you get an overview of the mandatory steps as required by ISO 22301. Please...