Howard and Jim chat about ISO 27008 Guidelines for Assessing Annex A Controls. Points discussed include: How many controls are required in ISO 27008? What are the seven steps outlined in ISO 27008 for measuring and assessing controls? How can ISO 27008 help…
Howard and Jim chat about Competence Requirements For Information Security Management Systems Professionals. Points discussed include: What is the importance of communication and documentation in auditing firms for ISMS professionals? How can auditors prepare for an audit, and what information should they request…
Howard and Jim chat about the Path to ISO 27001 Certification. Points discussed include: What is ISO 27001 and why do some organizations need certification in it? Do most organizations need to be certified in ISO 27001 to bid on projects in the…
Howard and Jim chat about ISO 27001, Annex A – Technical Controls. Points discussed include a review of the 14 controls in Clause 8: Annex A, Clause Eight, Technical Controls Number of controls:34 (8.1 to 8.34) Listen Now On Our Next Episode The…
Howard and Jim chat about ISO 27001, Annex A – Physical Controls. Points discussed include a review of the 14 controls in Clause 7: Annex A, Clause Seven, Physical Controls Number of controls:14 (7.1 to 7.14) Listen Now On Our Next Episode ISO…
Howard and Jim chat about ISO 27001, Annex A – People Controls. Points discussed include a review of the 8 controls in Clause 6: Annex A, Clause Six, People Controls Number of controls: 8 (6.1 to 6.8) Listen Now On Our Next Episode…
Howard and Jim chat about ISO 27001, Annex A – Organization Controls. Points discussed include: A review of the 37 controls in Clause 5: Annex A, Clause Five, Organizational Controls Number of controls: 37 (5.1 to 5.37) Listen Now On Our Next Episode…
Howard and Jim chat about the integration of an ISO 27001 into an existing ISO 9001 QMS. Points discussed include: ISO 9001 Quality Management Standard is the most prevalent in the world. It’s been around since 1987 and there are over 2 million…
Howard and Jim chat about the ISO 27001:2022 – Statement of Applicability (SoA) Items discussed include: The Statement of Applicability is required for ISO 27001 certification. It’s a statement that explains which Annex A security controls are — or aren’t — applicable to…
Howard and Jim chat about ISO 27007 – Guidance for Information Security Management Systems Auditing. Items discussed include: Plan – Do – Check – Act Approach. Getting clients to ask their auditees if the procedure, the way it’s been implemented, is getting them…
Trying to sign up for your iso tips Jim but cannot find where to.
I’ll have to add that option, Wayne. What we have now is a ‘Contact us’ button at the bottom, and people send the request there.
I’ll add you to the list. We’ll be sending out a new round after the FDIS comes out – should be next month – we’ll make sure you get the next ones.
In the meantime, feel free to glance through the previous tips: https://simplifyiso.com/iso-tips
Comments welcome!
Jim
your lessons are clear and helpful. Thanks
You’re welcome, Tony – thanks for leaving a note. Hope 2020 works out for you!
Jim
Hello Dude! Thank you so much for sharing the Informative Blog, It is really helpful for readers. Keep it up.
You’re welcome, and thanks for the comment. You may enjoy some of our free courses at the International Management System Institute: https://imsipro.org/