Blog ISO 27001
ISO 31000 in relation to ISO 27001
Risk management plays a very important role in an ISO 27001 Information Security Management System (ISMS). At the end of paragraph 6.1 “Actions to address risks and opportunities” there is however a reference to a fairly unknown norm ISO 31000. What is the relationship between ISO 31000 and ISO 27001? In this blog we briefly…
Jelle Hoekstra
Checklist for an information security audit
Several participants of our information security training course have asked us for an audit plan checklist. In this article we share our checklist based on the official IRCA/CQI guidelines. The checklist is applicable to both internal and external audits. It was designed for ISO 27001 audits but can also be used for other ISO standards.
Sieuwert van Otterloo
New 2018 version of Security Verified standard
The open standard ‘Security Verified’, has been updated in August 2018. It is a minor update to improve readability and to make the standard fully aligned with GDPR. The recent update should make this standard even easier to use for organisations that want a good Information Security Policy based on the same principle as ISO…
Sieuwert van Otterloo
ISO 27001 Introductory course – 15/16 Oct 2018
Have you thought about taking an ISO 27001 training, but would just like to start with the simple introduction? And would you like to have an option to get a Lead Auditor certificate by just taking a few more days extra training? Our new course offers just that! ICT Institute helps you to make ISO…
Floris van den Broek
ISO 27001 Training planned for 15/16 Oct 2018
Due to the success of the recent training Lead Auditor training ISO 27001, we will organise another session in April 2018. The training is not only for auditors, but for anyone who will be involved in ISO 27001 and students in this course have rated it top for both auditors, IT department members end users and…
Floris van den Broek