by Jeremy Sporn | Jan 30, 2018 | ISO 27001 Certification
On the path to ISO 27001 certification, one of the most important guideposts is the Information Security Policy document. Many of the organizations we work with already have a “policy” document in some form—but often there’s a disconnect between what that document... by Bhaumik Shah | Jan 19, 2018 | ISO 27001 Certification
The OWASP Application Security Verification Standard (ASVS) is a list of application security requirements or tests that architects, developers, testers, security professionals, and even consumers can use to define what constitutes a secure application. In this post,... by Jeremy Sporn | Dec 7, 2017 | ISO 27001 Certification
Software-as-a-Service (SaaS) deployments continue to gain popularity—but security remains the top barrier to adoption. How can you achieve competitive differentiation by demonstrating to clients and prospects that you are fully committed to securing their data, and... by Leigh Ronczka | Nov 17, 2017 | ISO 27001 Certification
I’ve been an information security auditor for almost fifteen years. I’ve performed internal audits as well as external audits. I’ve worked in a number of different industries, including utilities, finance, healthcare, and manufacturing. I’ve also dealt with many... by Feather Bokker | Nov 2, 2017 | ISO 27001 Certification
An ISO 27001 certification audit can be intimidating, especially for those new to the world of management standards. The right preparation can not only install confidence, but also increase your chances of a smooth process and a successful outcome. This post outlines... by Mosi Platt | Jun 14, 2017 | ISO 27001 Certification
Note: This post was originally written in 2015 but was updated in June 2017 with the most recent available data. Common questions we receive regarding ISO 27001 certification for law firms include “What do other law firms do?” or “How do we compare to other law firms...
