Get 2 Documentation Toolkits for the price of 1
Limited-time offer – ends March 28, 2024
TISAX – What is it, and how is it related to ISO 27001?
Update 2022-08-11. You probably know what ISO 27001 is, because it is an international standard, very popular in the information...
Update 2022-08-11. You probably know what ISO 27001 is, because it is an international standard, very popular in the information security sector, that helps organizations of all sectors to protect their information. But, did you...
How to use Open Web Application Security Project (OWASP) for ISO 27001?
Essentially, OWASP (Open Web Application Security Project) is an online community developing international open projects related to Web Application Security....
Essentially, OWASP (Open Web Application Security Project) is an online community developing international open projects related to Web Application Security. Mainly, it was created to develop secure web applications. Most of these projects have documents,...
7 ways to improve the internal audits of your ISO 27001 ISMS
ISO 27001:2013 states that the purpose of the internal audit is to check compliance against both “the organization’s own requirements...
ISO 27001:2013 states that the purpose of the internal audit is to check compliance against both “the organization’s own requirements … and the requirements of this International Standard.” Aside from being a necessity of the...
How to structure the documents for ISO 27001 Annex A controls
Updated: April 19, 2023, according to the ISO 27001 2022 revision. Once you’ve finished your risk assessment and treatment, it...
Updated: April 19, 2023, according to the ISO 27001 2022 revision. Once you’ve finished your risk assessment and treatment, it is time for you to start writing documents that describe your security controls according to...
Main changes in the new ISO 27002
Update 2013-09-25: This blog post was updated according to the final version of ISO 27002:2013 that was published on September...
Update 2013-09-25: This blog post was updated according to the final version of ISO 27002:2013 that was published on September 25, 2013 In my previous blog post I analyzed the changes between the old ISO...