We are going to explore why the focus on a risk-based approach has helped turn ISO 27001, the International Information Security Management Standard, into such a world-beater. Before we dive in, let’s set the scene and try to define what we mean by risk and risk management. What is ‘risk’? Here’s an interesting challenge. Ask […]
There are many good reasons to implement an information security management system (ISMS) and get it certified to ISO 27001, the International Standard for Information Security Management. The most common is that customers or clients, or in some cases stakeholders, want the assurance that an ISO 27001 certificate can provide. At first glance, an ISMS […]
Information Security Management Systems, ISO 27001 and the Benefits of Implementation. In this blog, we’re going back to basics and looking at some of the fundamentals of information security and ISO 27001, starting with the core ingredient, the information security management system, or ISMS, as it is commonly referred to. What is an Information Security […]
In November 2019, we saw the release of the updated version of the International Business Continuity Management System Standard, BS EN ISO 22301:2019. In this top tip, URM provides you with its analysis of 5 key differences from the 2012 version of the Standard. Should you require more information on implementing a BCMS in line […]
We recently posted a blog ‘New Year, Old Threats’ and only a few weeks later another new card data breach involving old attack methods has come to light. The Wawa chain of convenience store in the US announced it had been the victim of card data skimming malware on its point-of-sale (POS) systems at all […]
