DISC InfoSec blog

If you’re into ISO implementation or auditing, then you know that ISO books are a valuable resource. They can teach you new things, introduce you to new concepts around implementation, auditing and help you stay up-to-date on the latest trends in your field. That’s why I’ve put together this list of 6 essential reference eBooks […]

I just wanted to inform you that, at the end of September, Advisera launched “Second Course Exam for Free” promotional campaign. The campaign will start on September 22, and end on September 29, 2022. In this promotion the second course exam is completely FREE OF CHARGE. The bundles are displayed on two landing pages, one […]

DISC LLC presents a phase approach to deliver ISO 27001 Internal Audit services to SaaS businesses.  The Engagement: We understand that your core business is your SaaS application and you desire an audit.  The audit is to be an independent assessment of the company’s ISMS, to measure the maturity of the program, to identify if […]

Free tool | *Tool for defining the ISO 27001 ISMS scope* What is ISO 27001 Information Classification? IMPLEMENT ISO 27001 AND ISO 22301 EFFORTLESSLY What is ISO 27001 Information Classification? ISO 27001 & ISO 27017 & ISO 27018 CLOUD DOCUMENTATION TOOLKIT The challenges of achieving ISO 27001 Risk Management document templates

Risk Assessment and Risk Treatment Methodology The purpose of this document is to define the methodology for assessment and treatment of information risks, and to define the acceptable level of risk. The document is optimized for small and medium-sized organizations – we believe that overly complex and lengthy documents are just overkill for you. There […]

ISO 27001 is a widely-known international standard on how to manage information security. In this Help Net Security video, Nicky Whiting, Director of Consultancy, Defense.com, talks about the challenges of achieving ISO 27001, a widely-known international standard. ISO 27001 certification is not obligatory. Some organizations choose to implement it in order to benefit from the best […]

Implement ISO 27001 & ISO 27017 & ISO 27018 yourself, and do it easily and efficiently with our Documentation Toolkit. Step-by-step guidance with LIVE EXPERT SUPPORT 47 document templates – unlimited access to all documents required for ISO 27001 & 27017 & ISO 27018 certification, plus commonly used non-mandatory documents  Access to video tutorials  Email support  Expert review of a document  One hour of live one-on-one […]

Information classification is a process in which organisations assess the data that they hold and the level of protection it should be given. Organisations usually classify information in terms of confidentiality – i.e. who is granted access to view it. A typical system contains four levels of confidentiality: Confidential (only senior management have access) Restricted […]

DISC InfoSec #InfoSecTools and #InfoSectraining #InfoSecLatestTitles #InfoSecServices Follow DISC #InfoSec blog Ask DISC an InfoSec & compliance related question

For a limited time only, ITG is offering bestselling implementation guides free with each toolkit purchase.* All the pre-written policies and procedures you’ll ever need. Written by our expert team of in-house consultants, who have been delivering cyber security and data privacy consultancy for years. Reviewed throughout the year to ensure you’re always working from […]

What are the differences between the 2013 and 2022 editions of ISO/IEC 27002

Whether you’re a small organisation with limited resources or an international firm, achieving ISO 27001 certification will be a challenge. Anyone who has already been through the process will know that. You must assemble a team, conduct a gap analysis and risk assessment, apply security controls, create documentation and perform staff awareness training. And that’s before you […]

DISC InfoSec #InfoSecTools and #InfoSectraining #InfoSecLatestTitles #InfoSecServices Ask DISC an InfoSec & compliance related question

Build your ISO 27001 knowledge and win new business with Advisera’s free ISO 27001 online courses. And you can be sure that you chose the right learning partner, since all Advisera’s courses are now accredited by ASIC, the internationally respected assurance body for online learning providers worldwide. The courses’ structure is simple: Modules that cover […]

If you have planned an ISO 27001 implementation, but you are unsure of whether you should go with the 2013 revision or wait for the 2022 revision to be published, we have a solution for you. Buy the ISO 27001:2022 toolkit now, and receive the 2013 revision toolkit for free! Then you’ll have time to […]

Nine Steps to Success – An ISO 27001 Implementation DISC InfoSec #InfoSecTools and #InfoSectraining #InfoSecLatestTitles #InfoSecServices

New tool | *Advisera Assistant for Finding ISO 27001 Materials* Advisera Assistant – a fast and efficient tool that determines what ISO tools you need in less than 30 seconds. Try it now:

ISO 27701 specifies the requirements for establishing, implementing, maintaining, and continually improving a PIMS (privacy information management system). Compliance with ISO 27701 shows customers and stakeholders that your organization takes privacy legislation seriously. ISO 27701 serves as an extension to ISO 27001. Organizations that have implemented ISO 27001 will be able to incorporate the controls and […]

Certified ISO 27001 ISMS Lead Auditor Training Course ISO 27001 Lead Auditor is the qualification of choice for ISO 27001 professionals, recognized by employers worldwide. Implementing and maintaining compliance with the Standard requires comprehensive knowledge of ISO 27001. ITG Certified ISO 27001 ISMS Lead Auditor Training Course gives participants a solid understanding of the requirements of an ISO 27001 […]