Tips from URM – Three tips to help you simplify your risk management process
Three Tips to Help you Simplify your Risk Management Process
-
-
Tips from URM – How can I demonstrate GDPR compliance?
Tips from URM – About Demonstrating GDPR Compliance
-
Tips from URM – Impact of Legislation/Regulation on your approach to risk
Impact of Legislation/Regulation on Your Approach to Risk
-
Tips from URM – Make ‘Welfare, Delivery and Reputation’ your business continuity mantra
This week´s tip focuses on business continuity and, like some of our recent blogs, we want to step back from the coalface and look at the big picture. So, what should be your business continuity mantra (i.e. words, phrase or slogan that will help us always remember what our overriding BC priorities are), what […]
-
Tips from URM – Managing supplier risk- what do you need to know about your key third parties?
Managing Supplier Risk Surveys and reviews of information security incidents typically highlight third parties as being one of the major sources of issues and breaches (e.g. PWC Information Security Survey) and URM believes that many of these could be avoided by organisations improving their due diligence process. URM has repeatedly found that the due diligence […]
-
Tips from URM – Are you adequately covering GDPR within your ISMS?
Are you adequately covering GDPR within your ISMS? We have recently seen an increased focus on the General Data Protection Regulation (GDPR) by certification body (CB) assessors when conducting ISO 27001 audits. In the past, assessments have typically focused on whether organisations were registered with the Information Commissioner’s Office (ICO), whether they were complying […]
-
Tips from URM – Think ‘Context’ When Managing Information Risks
Think ‘Context’ When Managing Information Risks A common failing that we often see when organisations perform risk management is a lack of ‘complete’ understanding of the potential impacts of an information security breach from both internal and external perspectives, i.e. not fully understanding the context of the organisation. You need to be thinking of risks […]