Author Pavlo Burda
Dr. Pavlo Burda is an IT consultant and researcher specializing in emerging cybersecurity threats and people analytics for security.
Access Management: an introduction
You can have the best firewalls and the tightest encryption, but if your data bucket is openly reachable online or a former contractor’s account is still active after years, these technological controls are not really protecting you. Indeed, broken access control and security misconfiguration stay the two top risks for web apps. This is where…
Pavlo Burda
ICT Institute is now a Vanta partner: what users told us
ICT Institute has joined the Vanta partner programme. For our clients – companies working towards ISO 27001 – this means we can now combine our hands-on ISMS work (scoping, risk workshops, internal audits) with a compliance platform that takes a lot of the grind out of collecting evidence and keeping controls alive throughout the year.
Pavlo Burda
Implementing ISO 42001: example audit report
In our previous article on the AI Risk Management System, we explained how an AIMS can help organizations structure AI governance and support compliance efforts with the AI Act. Here we introduce our new template for auditing and structuring your AIMS and prepare for ISO 42001 certification. What is the AIMS? ISO 42001 requires organizations…
Pavlo Burda
The ISO 27001 Harmonized Structure
In this article, we walk through the Harmonized Structure of the ISO 27001 (Chapters 4-10) and explain how to implement it using the Plan-Do-Check-Act (PDCA) cycle. This will be the basis for your Information Security Management System (ISMS) according to the standard. The “engine” of the ISMS: Chapters 4 to 10 ISO 27001 is structured…
Pavlo Burda
HCAI-ep 2026: Human-Centered AI in Practice
The Human-Centered AI Education & Practice (HCAI-ep) conference focuses on how to design and evaluate AI systems that remain aligned with human values and real-world constraints. This is exactly where many organisations struggle today, especially in light of emerging regulation such as the EU AI Act. At HCAI-ep, we presented our work on fairness requirements…
Pavlo Burda
