a
.

    News and Commentary on ISO Management System Standards

    28 Feb 2025

    GDPR, ISO 27701 and ISO 27001: natural combination

    ISO 27001

    In 2018, many organizations, not only those based in the EU, spent much time and money on compliance with the General Data Protection Regulation (GDPR). But what actions should we take now to ensure ongoing compliance? It's not enough to have policies and procedures to demonstrate that you comply with the requirements. If there is a data breach or similar event, you will be challenged to ...
    Read More
    28 Feb 2025

    Comparing ISO 27000 Series of 50+ Standards, Guides, etc

    ISO 27001

    Currently, the ISO 27000 family includes fifty-seven (57) standards, guidelines, and other documents on information security. The total number is regularly changing, with the occasional withdrawal of some standards and the regular addition of others (several drafts of new standards have not been included here). How, then, is one to know which ones are mandatory and which are ...
    Read More
    28 Feb 2025

    Preventing Phishing Attacks: Free ISO 27001 Training Video

    ISO 27001

    Recommended as part of ISO 27001 Training or on Day 1 of Induction Training for new recruits A cyberattack can destroy a business. Whether that involves Denial-of-Service, deletion of files, ransomware, or other types of cyberattacks, the most frequent event they all have in common is human failure. Currently, the most common human failure is becoming a victim of a Phishing e-mail, which has been ...
    Read More
    09 Jan 2025

    Evidence for ISO 27001 Annex A compliance

    ISO 27001

    Demonstrating compliance with Annex A requirements of Annex A to your Certification Body Using ISO 27001 controls outlined in Annex A alone to address security vulnerabilities is never enough!
    Read More
    22 Oct 2024

    ISO 27001 in Manufacturing & Service Industries - 12 FAQs

    ISO 27001

    Have you considered this possibility? If you wait until this message greets you at work, a Notebook PC is stolen from a company vehicle, or staff members are working on their own PCs from home, it will be too late. It's not a question of whether your business will be targeted. You're already a target but have been lucky to date.
    Read More
    25 Apr 2024

    Measuring Information Security Effectiveness with ISO 27004

    ISO 27001

    ISO 27001 provides no guidance and is of little help In deciding what to monitor and measure regarding your Information Security Management System (ISMS), ISO 27001 specifies no mandatory requirements (as emphasized in our ISO 27001 training courses). Thankfully, ISO 27004 provides guidelines and principles for measuring and reporting the effectiveness of an organization's ISMS. The standard ...
    Read More
    14 Sep 2023

    Cyber Security in Medical Device Management

    ISO 13485, ISO 27001

    Did you know that cybersecurity is addressed under ISO 13485:2016 Clause 7.3 requirements? The Royal Academy of Engineering (RAE UK) report ‘Cyber Safety and Resilience’ (March 2018) suggests that the healthcare sector can learn from other industries when it comes to guarding against ransomware attacks, data breaches and hacking of connected health devices. That was just the beginning. Since ...
    Read More
    29 Jun 2023

    Typical errors in implementing ISO 27001

    ISO 27001

    Securing certification to this Information Security standard requires a collective effort. Implementing ISO 27001, the international standard for information security management systems (ISMS), can be complex, and there are several common errors that organizations may need to correct during the implementation process.
    Read More
    13 Jun 2023

    ISO 27001 Can include All Information Security Regulations

    ISO 27001

    Read More
    19 Jan 2023

    Information Security Standards other than ISO 27001

    ISO 27001

    Read More
     

    Subscribe to Email Updates

    Recent Posts

    Browse by Topic

    See all
    Already enrolled? YOUR LESSONS ARE HERE!

    Courses

    FAQs

    Other Information

    Contact Information

    • deGRANDSON Global UK
    • Adamson House, Towers Business Park, DIDSBURY M20 2YY
    • info@degrandson.com

     

    © 2025 · deGRANDSON Global.

    deGRANDSON Global Blog listing page