Blog

ISO 27001 technological controls for software development

The latest version of ISO 27001 contains multiple controls about secure development, engineering, coding and testing that seem to overlap. In this article we provide guidance how to implement these controls. The overlapping controls explained are 8.25, 8.26, 8.27 and 8.28. We also cover 8.31 and 8.33 (test environments and test information).

Sieuwert van Otterloo 24 December 2024

Does your company have research projects for computer science students?

We are looking for innovative companies, in the Netherlands, with data-driven teams involved in security, AI or other research that are willing to provide a business problem to solve and an in-house supervisor.  In return the companies will get a small team (2-3 third year computer science students) that will apply state of the art…

Pavlo Burda 26 November 2024

Evaluating the Role of Web Components in 2024: To Use or Not to Use?

In the fast-paced world of web development, it’s essential to keep up with the latest tools and technologies. One such technology is ‘web components’, a way to make reusable components for web apps.  Introduced in 2011, they have been supported by all major browsers since 2020. In this blog post, we’ll explore what web components…

Tom Hastjarjanto 6 May 2024

ITIL and service management: a short introduction

ITIL, the standard for service management, is an important standard for people who want to understand how IT is used in practice. It is especially important for professionals that want to grow beyond software development into IT management, since it complements software development really well.

Sieuwert van Otterloo 22 April 2024

open standard Security Verified updated

Last month (feb 2024), the 2024 version of the open information security standard ‘Security Verified’ was released. This new version contains small changes to make it more readable and easier to combine with the latest version of ISO 27001.

Sieuwert van Otterloo 3 March 2024