• (0)
    ISO-27001-ISO-22301-blog

    Tag: “ISO 27002”

    Relationship between ISO 27701, ISO 27001, and ISO 27002
    You probably know what the GDPR (General Data Protection Regulation) is, and maybe you also know about information security and...
    You probably know what the GDPR (General Data Protection Regulation) is, and maybe you also know about information security and the ISO 27001 series standards, but do you know that there is an international standard...
    How to manage the security of network services according to ISO 27001 A.13.1.2
    Everybody knows that information is stored in information systems (workstations, laptops, smartphones, etc.), but to exchange the information via a...
    Everybody knows that information is stored in information systems (workstations, laptops, smartphones, etc.), but to exchange the information via a network is necessary. Most of the information systems in this world are connected to the...
    Clear desk and clear screen policy – What does ISO 27001 require?
    Imagine this scene: an employee at his desk, in an open-plan office, is reviewing on his notebook some data to...
    Imagine this scene: an employee at his desk, in an open-plan office, is reviewing on his notebook some data to prepare a report about the last quarter financial results, or the pre-selling performance evaluation of...
    How to set security requirements and test systems according to ISO 27001
    Security is something that everyone wants to have, but which no one ever wants to use. And this thought can...
    Security is something that everyone wants to have, but which no one ever wants to use. And this thought can bring a lot of problems. Unless a system’s purpose is security related (e.g., firewall, access...
    Secure equipment and media disposal according to ISO 27001
    Think about the following scenarios: Printed documents (e.g., budget drafts, or client’s refused proposals) are no longer needed and used as...
    Think about the following scenarios: Printed documents (e.g., budget drafts, or client’s refused proposals) are no longer needed and used as scratch paper, or accumulated in waiting areas for removal. Defective equipment (e.g., CEO’s tablet, or project...
    Requirements to implement network segregation according to ISO 27001 control A.13.1.3
    Think about a house, or office, with only one big space where you can arrange all your loved and precious...
    Think about a house, or office, with only one big space where you can arrange all your loved and precious things the way you think most appropriate. Tempting, isn’t it? The flexibility to use the...