The ISMS.online blog
Are you a newbie, improver or expert when it comes to information security?
Here you can search for something specific, sort blogs by categories, or simply browse.
ISO 27001:2013 and ISO 27001:2017 what’s the difference?
In practical terms, very little has changed between the 2013 and 2017 ISO 27001 standards except for a few minor cosmetic points and a small name change. The latest published version of the ISMS standard is – BS EN ISO/IEC 27001: 2017. The ISO version of the standard...
read more
How to develop an Asset Inventory for ISO 27001 – A pragmatic approach
The importance of the Information Asset Inventory for ISO 27001:2013 If you are adopting an asset-based information security risk assessment for ISO 27001:2013, (as well as the ISO 27001:2017 updates) and experts agree it is a robust and pragmatic risk methodology to...
read more
Why GDPR is a good reason to invest in an ISMS now
There are many growing drivers for an organisation and its supply chain to take the subject of information security and privacy seriously. These include major threats from cyber-crime that can kill companies with one simple data breach. Despite that...
read more
The NIST Cybersecurity Framework gets a reboot with Version 1.1
The NIST Cybersecurity Framework is the US standard regulated by the National Institute is Standards and Technology. The original version set out in February 2014 has now been updated to Version 1.1. Let's take a look at what's changed. What is...
read more
5 steps to success for GDPR
Actions speak louder than words, and the same can be said for GDPR. It's not enough to simply say that you're compliant with the Data Protection Act updates. The challenges are about showing that you're compliant and that you are able to manage it on an...
read more
BBC Radio 5 live interviews Deputy Information Commissioner on GDPR
With the subject of GDPR finally hitting mainstream news, BBC Radio 5 Live presenters Sean Farringdon and Rachel Burden interview the Deputy Information Commissioner, Steve Wood on the imminent Data Protection Regulation changes. We've highlighted some of...
read more
GDPR Updates: Right to Erasure
In the week that Google loses a landmark case against a London businessman over his Right to Erasure, we take a look at what updates there are from the ICO in this particular section of the GDPR. Google (none of) My Business This week a UK...
read more
Join ISMS.online and Advice Cloud in a live webinar discussing G-Cloud 10
With the long-awaited G-Cloud 10 opening up applications on Wednesday 17th April, we have joined up with partner Advice Cloud to deliver a live 'what you need to know' webinar. Thursday 18th April 10-11am GMT G-Cloud 10 is expected to...
read more
