by John Verry | Oct 4, 2019 | ISO 27001 Certification
Recently I joined a vCISO call with one of our SaaS clients. They are considering ISO 27001 certification and immediately presented us with the question: “Do we need AlienVault (now called AT&T Cybersecurity) to be ISO 27001 certified?” Nothing like going from... by Andrew Frost | Sep 27, 2019 | ISO 27001 Certification
One of the mainstays of an ISO 27001 Information Security Management System (ISMS) is document, document, document. To do that, we develop auditable artifacts; and let’s face it, there are many. So why create another artifact that isn’t required? I’m talking about an... by Eddie Taliaferro | Sep 16, 2019 | ISO 27001 Certification
Recently I conducted a surveillance audit for a SaaS provider that has been ISO 27001 certified for over three years. I logged five nonconformities… so something was off. Their information security program wasn’t moving forward as it should have been—especially with... by Aurore Watts | Aug 28, 2019 | ISO 27001 Certification
Recently we have been seeing a lot of interest among clients and prospective clients in working towards SOC 2 attestation and ISO 27001 certification at the same time. This isn’t unexpected given how much the new SOC 2 framework parallels ISO 27001. Is this a good... by Richard Stever | Aug 7, 2019 | ISO 27001 Certification
This short blog is the eighth and final post in a series that explains in straightforward terms the process we follow to build an ISO 27001 certifiable Information Security Management System (ISMS). You can access our entire proven process here. We hope you found... by Richard Stever | Aug 6, 2019 | ISO 27001 Certification
This short post is the seventh in a series that explains in straightforward terms the process we follow to build an ISO 27001 certifiable Information Security Management System (ISMS). You can access our entire proven process here. We hope you find these bite-sized...
