by John Verry | Oct 19, 2021 | ISO 27001 Certification
Reading Time: 4 minutes
If your organization is ISO 27001 certified, you are likely aware that the International Organization for Standardization (ISO) is changing the structure of the ISO 27001/27002 control framework. This is notable because the current...
by Andrea VanSeveren | Oct 13, 2021 | ISO 27001 Certification
Reading Time: 3 minutes
With most cybersecurity frameworks, such as SOC 2 or NIST 800-171, the emphasis is on the controls, with all organizations being obliged to implement the same “one size fits all” control set. Many companies seeking ISO 27001...
by Andrea VanSeveren | Oct 12, 2021 | ISO 27001 Certification
Reading Time: 2 minutes
Organizations that are pursuing ISO 27001 certification often think that the standard is all about the controls. When you’ve implemented and documented all 114 controls in ISO 27001’s Annex A, you’re good-to-go for your certification...
by Andrea VanSeveren | Oct 11, 2021 | ISO 27001 Certification
Reading Time: 3 minutes
If your company is working towards ISO 27001 certification, you may be laser-focused on achieving that goal, and perhaps not worrying about what other cybersecurity and privacy efforts might need to come later. But with a little...
by Andrea VanSeveren | Oct 6, 2021 | ISO 27001 Certification
Reading Time: 3 minutes
Most organizations pursue ISO 27001 certification because they are under pressure from clients, regulators and/or investors to prove they can protect sensitive data. Often, there’s time pressure as well. Deals may be on the line. So...
by Andrea VanSeveren | Oct 5, 2021 | ISO 27001 Certification
Reading Time: 3 minutes
If your organization is preparing for an ISO 27001 certification audit, you’re probably documenting everything but the steps for cleaning the coffee maker in your break room. Who cares if nobody ever looks at it again or uses it to...
