Blog Security
ICT Institute is now a Vanta partner
ICT Institute has joined the Vanta partner programme. For our clients – companies working towards ISO 27001 – this means we can now combine our hands-on ISMS work (scoping, risk workshops, internal audits) with a compliance platform that takes a lot of the grind out of collecting evidence and keeping controls alive throughout the year….
Pavlo Burda
The ISO 27001 Harmonized Structure
In this article, we walk through the Harmonized Structure of the ISO 27001 (Chapters 4-10) and explain how to implement it using the Plan-Do-Check-Act (PDCA) cycle. This will be the basis for your Information Security Management System (ISMS) according to the standard. The “engine” of the ISMS: Chapters 4 to 10 ISO 27001 is structured…
Pavlo Burda
Supplier management in ISO 27001
Since suppliers often have access to information assets that are critical to business operations, the ISO 27001 standard dedicates a full set of organizational controls (5.19–5.23) to managing information security risks in supplier relationships. In this article, we explain these controls and provide a supplier register template.
Pavlo Burda
Call for companies: research projects for VU Business track 2026
For the upcoming 2026 edition of the VU’s Computer Science Bachelor Research projects, ICT Institute is again organising the Computer Science Business Track where we supervise a new cohort of student teams working on real-world, data-driven challenges. We are looking for innovative companies in the Netherlands (from scale-ups to public organisations) with substantial data, AI,…
Pavlo Burda
Exploring Notion AI features for ISO 27001 and GDPR
The rise of AI-powered workspaces is changing how InfoSec teams manage their security programs. In Notion, ISO 27001 documentation can evolve from static registers into intelligent dashboards for your Information Security Management System (ISMS).
Pavlo Burda