ISO 27001 Controls: Shoulder Surfing Is shoulder surfing just a cheeky behavior, or could be a threat to your sensitive information? If you’re working with potentially sensitive data in a public location, you need to consider that other people may be able to see what’s on your screen. ISO 27001 control A.6.2.1 requires that an organisationContinue reading “ISO 27001 Controls: Shoulder Surfing”
Tag Archives: Compliance
ISO 27001 Controls: Lock Your Computer!
ISO 27001 Controls: Lock Your Computer The importance of locking your laptop – and not having to do the dishes One important practice of operational security is to ensure that your computer is secure before you leave it unattended. In other words, lock your laptop. This is covered by ISO 27001 control A.11.2.8 If a maliciousContinue reading “ISO 27001 Controls: Lock Your Computer!”
Who needs ISO 27001 certification?
Who needs ISO 27001 certification? If you are wondering whether achieving ISO 27001 certification will serve your business goals and customer needs, this post is for you. ISO 27001 – What is it? The ISO 27001 standard focuses on an organisation’s Information Security Management System (ISMS), where it is outlined how they’ve organised their processes,Continue reading “Who needs ISO 27001 certification?”
What are the different types of audit findings?
What are the different types of audit findings? From Observations to Non-conformities: exploring the different types of ISO audit results. A key part of successfully maintaining and implementing ISO 27001 is the regular conduction of audits. As part of this, it is also important to have a clear understanding of your organisation’s ISO audit results.Continue reading “What are the different types of audit findings?”
Understanding UX when choosing compliance management software
Understanding UX when choosing compliance management software User experience through the lens of compliance: exploring the meaning of good UX. Keeping up with internal policies while consistently improving on social security practices can be a long process, with many moving parts. This can be made more challenging if you are administering your compliance and riskContinue reading “Understanding UX when choosing compliance management software”
The ISO 27001 audit process – the auditee’s guide
The ISO 27001 audit process – the auditee’s guide Knowing how and when to prepare for an upcoming audit. The time leading up to an ISO audit can be stressful, typically demanding preparations such as reviewing numerous out-of-date policies, locating audit trails for evidence and re-familiarising with the requirements of standards such as ISO 27001. Continue reading “The ISO 27001 audit process – the auditee’s guide”
Conducting an ISO 27001 internal audit: a 5-step checklist
Conducting an ISO 27001 internal audit: a 5-step checklist A core part of successfully maintaining and implementing ISO 27001 is the regular and independent conduction of internal audits. Data breaches and cyber attacks occur every single day, making cybersecurity not only an increasing concern for businesses, but also highlighting the risks of non-compliance. As aContinue reading “Conducting an ISO 27001 internal audit: a 5-step checklist”
First impressions: where user experience and compliance meet
First impressions: where user experience and compliance meet Balancing a good user experience with a culture of compliance. Yesterday marked two years since the UK went into its first lockdown. Since then, the compliance landscape has grown exponentially, and this is only predicted to accelerate in the upcoming years (Source, GRC 2020). Such a fastContinue reading “First impressions: where user experience and compliance meet”
How our customers are using Inverifi in their day-to-day
How our customers are using Klarity Works in their day-to-day A blog outlining some of the ways our customers have surprised us in their usage of Klarity Works. “Everyone has their own user experiences with how we like to use things and translate things, I just think having it all in one place is goodContinue reading “How our customers are using Inverifi in their day-to-day”
Policy management – 5 keys to creating a compliance culture
Policy management – 5 keys to creating a compliance culture Our top suggestions for embedding compliance and policy management in your organisation Summary Policy management is a huge part of not only audits and compliance, but of keeping your people aligned with your organisation. Writing effective policies, procedures and guidelines allows you to provide guideContinue reading “Policy management – 5 keys to creating a compliance culture”
