On the morning of August 4, 2022, Advanced, a supplier for the UK’s National Health Service (NHS), was hit by a major cyberattack. Key services including NHS 111 (the NHS’s 24/7 health helpline) and urgent treatment centers were taken offline, causing widespread disruption. This attack served as a brutal reminder of what can happen without […]
A new version of ISO 27001 was published this week, introducing several significant changes in the way organisations are expected to manage information security. The Standard was last revised almost a decade ago (although a new iteration of the supplementary standard ISO 27002 was published in February 2022), meaning that the release of ISO 27001:2022 has been much needed […]
If you’re a security practitioner dealing with ISO 27001, you’re probably wondering what new things you will need to implement as part of the changes that will be made to this standard during 2022. In this article, I’ll focus on 11 new controls that are set to be introduced in ISO 27001. For general information […]
If you’re into ISO implementation or auditing, then you know that ISO books are a valuable resource. They can teach you new things, introduce you to new concepts around implementation, auditing and help you stay up-to-date on the latest trends in your field. That’s why I’ve put together this list of 6 essential reference eBooks […]
I just wanted to inform you that, at the end of September, Advisera launched “Second Course Exam for Free” promotional campaign. The campaign will start on September 22, and end on September 29, 2022. In this promotion the second course exam is completely FREE OF CHARGE. The bundles are displayed on two landing pages, one […]
DISC LLC presents a phase approach to deliver ISO 27001 Internal Audit services to SaaS businesses. The Engagement: We understand that your core business is your SaaS application and you desire an audit. The audit is to be an independent assessment of the company’s ISMS, to measure the maturity of the program, to identify if […]
Free tool | *Tool for defining the ISO 27001 ISMS scope* What is ISO 27001 Information Classification? IMPLEMENT ISO 27001 AND ISO 22301 EFFORTLESSLY What is ISO 27001 Information Classification? ISO 27001 & ISO 27017 & ISO 27018 CLOUD DOCUMENTATION TOOLKIT The challenges of achieving ISO 27001 Risk Management document templates
Risk Assessment and Risk Treatment Methodology The purpose of this document is to define the methodology for assessment and treatment of information risks, and to define the acceptable level of risk. The document is optimized for small and medium-sized organizations – we believe that overly complex and lengthy documents are just overkill for you. There […]
ISO 27001 is a widely-known international standard on how to manage information security. In this Help Net Security video, Nicky Whiting, Director of Consultancy, Defense.com, talks about the challenges of achieving ISO 27001, a widely-known international standard. ISO 27001 certification is not obligatory. Some organizations choose to implement it in order to benefit from the best […]
Implement ISO 27001 & ISO 27017 & ISO 27018 yourself, and do it easily and efficiently with our Documentation Toolkit. Step-by-step guidance with LIVE EXPERT SUPPORT 47 document templates – unlimited access to all documents required for ISO 27001 & 27017 & ISO 27018 certification, plus commonly used non-mandatory documents Access to video tutorials Email support Expert review of a document One hour of live one-on-one […]
Information classification is a process in which organisations assess the data that they hold and the level of protection it should be given. Organisations usually classify information in terms of confidentiality – i.e. who is granted access to view it. A typical system contains four levels of confidentiality: Confidential (only senior management have access) Restricted […]
DISC InfoSec #InfoSecTools and #InfoSectraining #InfoSecLatestTitles #InfoSecServices Follow DISC #InfoSec blog Ask DISC an InfoSec & compliance related question
For a limited time only, ITG is offering bestselling implementation guides free with each toolkit purchase.* All the pre-written policies and procedures you’ll ever need. Written by our expert team of in-house consultants, who have been delivering cyber security and data privacy consultancy for years. Reviewed throughout the year to ensure you’re always working from […]
What are the differences between the 2013 and 2022 editions of ISO/IEC 27002
Whether you’re a small organisation with limited resources or an international firm, achieving ISO 27001 certification will be a challenge. Anyone who has already been through the process will know that. You must assemble a team, conduct a gap analysis and risk assessment, apply security controls, create documentation and perform staff awareness training. And that’s before you […]
DISC InfoSec #InfoSecTools and #InfoSectraining #InfoSecLatestTitles #InfoSecServices Ask DISC an InfoSec & compliance related question
Build your ISO 27001 knowledge and win new business with Advisera’s free ISO 27001 online courses. And you can be sure that you chose the right learning partner, since all Advisera’s courses are now accredited by ASIC, the internationally respected assurance body for online learning providers worldwide. The courses’ structure is simple: Modules that cover […]
If you have planned an ISO 27001 implementation, but you are unsure of whether you should go with the 2013 revision or wait for the 2022 revision to be published, we have a solution for you. Buy the ISO 27001:2022 toolkit now, and receive the 2013 revision toolkit for free! Then you’ll have time to […]
Nine Steps to Success – An ISO 27001 Implementation DISC InfoSec #InfoSecTools and #InfoSectraining #InfoSecLatestTitles #InfoSecServices
