• (0)
    ISO-27001-ISO-22301-blog

    ISO 27001 & ISO 22301 Blog

    Information security policy – how detailed should it be?
    Quite often I see information security policies written in too much detail, trying to cover everything from strategic objectives to...
    Quite often I see information security policies written in too much detail, trying to cover everything from strategic objectives to how many numerical digits a password should contain. The only problem with such policies is...
    How to write business continuity plans?
    If you started implementing business continuity management, probably the biggest challenge you are facing is writing the business continuity plans....
    If you started implementing business continuity management, probably the biggest challenge you are facing is writing the business continuity plans. Why is it so difficult? Well, you have to think of various scenarios under which...
    Document management in ISO 27001 & BS 25999-2
    Why is it that ISO 27001 and BS 25999-2 put such an emphasis on the control of documents? Both standards...
    Why is it that ISO 27001 and BS 25999-2 put such an emphasis on the control of documents? Both standards define very strictly how the documents must be managed, and require that the organization must...
    Dilemmas with ISO 27001 & BS 25999-2 internal auditors
    If this is the first time you have come across the notion of internal auditor, you are probably puzzled –...
    If this is the first time you have come across the notion of internal auditor, you are probably puzzled – Why would I need another control? Who is going to pay for it? Who should...
    Can business continuity strategy save your money?
    You are thinking about implementing the business continuity management/BS 25999-2 standard? But then you hear it will cost you a...
    You are thinking about implementing the business continuity management/BS 25999-2 standard? But then you hear it will cost you a lot? It probably will cost you, but not necessarily as much as you thought –...
    Using ISO 9001 for implementing ISO 27001
    You have already implemented ISO 9001? You have heard that ISO 27001 might be a good idea? But how can...
    You have already implemented ISO 9001? You have heard that ISO 27001 might be a good idea? But how can something that has to do with quality help you implement information security? It can, more...