• (0)
    ISO-27001-ISO-22301-blog

    Tag: “BCMS”

    Using ISO 22301 business continuity practices to support mass public events
    Managing public events with hundreds or thousands of people is a challenge, as disruptions of these events may result in...
    Managing public events with hundreds or thousands of people is a challenge, as disruptions of these events may result in huge material losses or even loss of life. We face the classic situation where disruptions...
    Incidents in ISO 22301 vs. ISO 27001 vs. ISO 20000 vs. ISO 28003
    Management system standards, especially those dealing with security and interruptions of business processes, use the term “incident management.” As these...
    Management system standards, especially those dealing with security and interruptions of business processes, use the term “incident management.” As these management system standards deal with different aspects of managing business processes (IT Service Management, Information...
    The blessing of continuous improvement in ISO 22301
    As with any other ISO management standard, not improving is not an option in ISO 22301. Best results can be...
    As with any other ISO management standard, not improving is not an option in ISO 22301. Best results can be achieved if improvements are applied to different aspects of the BCM approach. What improvement area...
    Risk assessment vs. internal audit in ISO 27001 and ISO 22301
    Quite often I see people searching for ISO 27001 or ISO 22301 checklists for performing the internal audit; however, they expect those...
    Quite often I see people searching for ISO 27001 or ISO 22301 checklists for performing the internal audit; however, they expect those checklists to help them with, e.g., which information does the organization have, who has access...
    Roles and responsibilities of top management in ISO 27001 and ISO 22301
    Did you know that, in most cases, failure to implement ISO 27001 or ISO 22301 was directly related to the...
    Did you know that, in most cases, failure to implement ISO 27001 or ISO 22301 was directly related to the fact that top management did not want to assume their responsibilities for information security /...
    Why is management review important for ISO 27001 and ISO 22301?
    Like some other clauses in ISO 27001 and ISO 22301, clause 9.3, which defines requirements for management review, is one...
    Like some other clauses in ISO 27001 and ISO 22301, clause 9.3, which defines requirements for management review, is one of the most misunderstood and most underappreciated elements of these standards. In practice, this review...