Management-Review according to ISO 27001 The ISO 27001 standard expects management to regularly address the current state of information security. According to ISO 27001, the so-called management review compares the current state with the desired state specified in the ISMS. The following topics should be on the management review agenda: Security incidents Risks Expectations Deviations […]
What is ISO 27004? ISO 27004 can be seen as a guide for measuring the efficiency of an information security management system (ISMS Performance Monitoring). The guidelines provided for the development, measurement, implementation and maintenance of an ISMS are intended to help companies ensure sustainable information security. Evaluating the effectiveness of your ISMS should serve
Why is ISO 9001 certification beneficial? Business customers are increasingly expecting proof of functioning quality control from their suppliers. The easiest way is to introduce a quality management system (QMS) in the company. However, companies need an ISO 9001 certificate in order to be able to prove that they are following their own quality management
Do I absolutely need ISO 27001 certification? The most commonly cited reasons for ISO 27001 certification are obvious: protecting valuable data and improving a company’s trustworthiness. However, the costs of an ISO27001 project are sometimes not in proportion to the profits that can be achieved. So every managing director rightly asks himself: do I need
Where can you buy the ISO 27001 certificate? It is repeatedly claimed that you can buy ISO certificates on the Internet. You shouldn’t believe the fairy tale, because there’s more to it than just being able to buy the ISO 27001 certificate. Before that, you have to do your homework. To do this, an information
Data destruction according to DIN 66399 GDPR and ISO 27001 compliant Companies and authorities regularly have to destroy data carriers that are no longer needed. Some data storage media are in the form of paper files or print media. Hard drives, DVDs, USB sticks, SSDs and tapes must also be destroyed in accordance with DIN
