by Lee Ronczka | Mar 15, 2018 | ISO 27001 Certification
Businesses worldwide that collect data pertaining to EU citizens have until May 2018 to comply with the new General Data Protection Regulation (GDPR), or potentially face stiff fines. Can aligning with ISO 27001 or pursuing/achieving ISO 27001 certification, help you...
by Jeremy Sporn | Jan 30, 2018 | ISO 27001 Certification
On the path to ISO 27001 certification, one of the most important guideposts is the Information Security Policy document. Many of the organizations we work with already have a “policy” document in some form—but often there’s a disconnect between what that document...
by Bhaumik Shah | Jan 19, 2018 | ISO 27001 Certification
The OWASP Application Security Verification Standard (ASVS) is a list of application security requirements or tests that architects, developers, testers, security professionals, and even consumers can use to define what constitutes a secure application. In this post,...
by Jeremy Sporn | Dec 7, 2017 | ISO 27001 Certification
Software-as-a-Service (SaaS) deployments continue to gain popularity—but security remains the top barrier to adoption. How can you achieve competitive differentiation by demonstrating to clients and prospects that you are fully committed to securing their data, and...
by Lee Ronczka | Nov 17, 2017 | ISO 27001 Certification
I’ve been an information security auditor for almost fifteen years. I’ve performed internal audits as well as external audits. I’ve worked in a number of different industries, including utilities, finance, healthcare, and manufacturing. I’ve also dealt with many...
by Feather Bokker | Nov 2, 2017 | ISO 27001 Certification
An ISO 27001 certification audit can be intimidating, especially for those new to the world of management standards. The right preparation can not only install confidence, but also increase your chances of a smooth process and a successful outcome. This post outlines...
