• (0)
    ISO-27001-ISO-22301-blog

    Tag: “Annex A”

    How ISO 27001 and TISAX are related
    You probably know what ISO 27001 is, because it is an international standard, very popular in the information security sector,...
    You probably know what ISO 27001 is, because it is an international standard, very popular in the information security sector, that helps organizations of all sectors to protect their information. But, did you know that...
    How to use Open Web Application Security Project (OWASP) for ISO 27001?
    Essentially, OWASP (Open Web Application Security Project) is an online community developing international open projects related to Web Application Security....
    Essentially, OWASP (Open Web Application Security Project) is an online community developing international open projects related to Web Application Security. Mainly, it was created to develop secure web applications. Most of these projects have documents,...
    7 ways to improve the internal audits of your ISO 27001 ISMS
    ISO 27001:2013 states that the purpose of the internal audit is to check compliance against both “the organization’s own requirements...
    ISO 27001:2013 states that the purpose of the internal audit is to check compliance against both “the organization’s own requirements … and the requirements of this International Standard.” Aside from being a necessity of the...
    How to structure the documents for ISO 27001 Annex A controls
    Once you’ve finished your risk assessment and treatment, it is time for you to start writing documents that describe your...
    Once you’ve finished your risk assessment and treatment, it is time for you to start writing documents that describe your security controls according to ISO 27001 Annex A. But, which documents should you write? How do...
    Can ISO 27001 risk assessment be used for ISO 22301?
    A few days ago I received the following question from one of our clients: “What is the difference between ISMS...
    A few days ago I received the following question from one of our clients: “What is the difference between ISMS Risk Assessment and BCM Risk Assessment?” And, although the answer to this question might seem...
    Main changes in the new ISO 27002
    Update 2013-09-25: This blog post was updated according to the final version of ISO 27002:2013 that was published on September...
    Update 2013-09-25: This blog post was updated according to the final version of ISO 27002:2013 that was published on September 25, 2013 In my previous blog post I analyzed the changes between the old ISO...