ISO 27001 Attributes Explained

ISO 27001 Attributes Explained

ISO 27001 Attributes Introduced in the 2022 update to the standard, in this ultimate guide to ISO 27001 Attributes you will learn What ISO 27001 Attributes are If you need to use them How to use them Detailed explanations of controls and attributes Table of...
ISO 27001 Continual Improvement Policy Explained + Template

ISO 27001 Continual Improvement Policy Explained + Template

A Continual Improvement Policy sets out the guidelines and the framework for how you manage when you identify that things are not working as intended. The policy is about maintaining an effective information security management system so it continues to meet is...
ISO 27001 Supplier Security Policy Explained + Template

ISO 27001 Supplier Security Policy Explained + Template

An ISO 27001 supplier security policy is a playbook that keeps your company and your partners safe from cyber threats. It’s not as scary as it sounds, it’s all about making sure everyone you work with follows the same rules to protect important...
ISO 27001 Return of Assets Beginner’s Guide

ISO 27001 Return of Assets Beginner’s Guide

Introduction In the beginner’s guide to ISO 27001 Return of Assets you will learn  what return of assets is how to implement it I am Stuart Barker the ISO 27001 Ninja and using over 30 years experience on hundreds of ISO 27001 audits and ISO 27001 certifications...
Business Impact Analysis Explained + Template

Business Impact Analysis Explained + Template

A business impact analysis is a process that helps you identify the effects of a significant disruption on your organisation. You’ll figure out what parts of your business are most crucial and can’t be stopped. Key Questions to Ask During this...
ISO 27001 Cloud Security Policy: Explained + Template

ISO 27001 Cloud Security Policy: Explained + Template

An ISO 27001 Cloud Security Policy is essentially your company’s rulebook for making sure that all the data you store or process using cloud services (like Amazon Web Services, Microsoft Azure, or Google Cloud) stays safe and secure.It’s a set of...
How To Create an ISO 27001 Threat Intelligence Process and Report

How To Create an ISO 27001 Threat Intelligence Process and Report

Threat intelligence is a new control introduced in the ISO 27001:2022 update. It is called ISO 27001:2022 Annex A 5.7 Threat Intelligence. In this article you will learn: What it is ISO 27001 Threat Intelligence How to implement ISO 27001 Threat Intelligence How to...