• (0)
    ISO-27001-ISO-22301-blog

    Tag: “ISMS”

    Information security policy – how detailed should it be?
    Quite often I see information security policies written in too much detail, trying to cover everything from strategic objectives to...
    Quite often I see information security policies written in too much detail, trying to cover everything from strategic objectives to how many numerical digits a password should contain. The only problem with such policies is...
    Dilemmas with ISO 27001 & BS 25999-2 internal auditors
    If this is the first time you have come across the notion of internal auditor, you are probably puzzled –...
    If this is the first time you have come across the notion of internal auditor, you are probably puzzled – Why would I need another control? Who is going to pay for it? Who should...
    How to get certified against ISO 27001?
    You have been implementing ISO 27001 for quite a long time, invested quite a lot in education, consultancy and implementation...
    You have been implementing ISO 27001 for quite a long time, invested quite a lot in education, consultancy and implementation of various controls. Now comes the auditor from a certification body – will you pass...