ISO 27001 – What’s new in the latest (2022) version?

The ISO 27001 standard sets the foundation for information security management systems (ISMS) and provides guidelines for organizations to implement effective controls and protect their valuable information assets. In 2018, ISO 27001 underwent significant updates, and now, in 2022, the standard has been further revised to address the evolving cybersecurity landscape. This article aims to…

Read more

Risk management in information security

Information security risk management is the process of identifying vulnerabilities to your information assets that could impact their confidentiality, integrity or availability along with the threats that could exploit those vulnerabilities – together these define the risk.  The next step is to evaluate the risk to determine its severity, usually by considering the impact if…

Read more