ISO 27001 is an IT security framework that is based on security best practices. As such, an ISO 27001 certification can be thought of as evidence that an organization takes cyber security seriously ...

Back in 2005, a new series of ISO standards made an appearance on the international stage of certifications (try to suppress the image of large wads of paper assembled in a Broadway kick line).

Since 2005, ISO 27001 has provided a framework for the secure retention of data with a six-part process based around generating policies, identifying risks and developing control objectives. But this ...

Whether or not you have had any direct experience working with international standards, ISO 27001 (ISO/IEC 27001:2005 – Information technology — Security techniques — Information security management ...

There are various reasons why a company might want to comply with ISO 27001, with some looking to provide assurances to customers and partners that they are aligned with international best practices.

Every company has sensitive data that needs to be protected. Securing information properly is a challenge that requires careful management of people and assets through the application of clear ...

The dynamic environment of security risks is a place of constant change, where new threats develop, vulnerabilities are discovered, and security incidents arise with major repercussions, both for ...

As New Jersey Transit CISO, Rafi Khan is responsible for protecting data at one of the largest public transportation agencies in the United States. It’s not an easy job, he admits, and he won’t ...

More and more organisations are looking to move to cloud to benefit from scalability, cost reduction and the ability to launch new service offerings fast. The dynamic nature of cloud however ...