Category Archives: ISO 27001

What is CPD? CPD stands for Continuing Professional Development and is the term used to describe the learning activities professionals engage in to develop and enhance their abilities.  This could be through instructor led courses, workshops, seminars, conferences and e-learning. Who Requires CPD? If you’re a member of a professional body it is likely you…


Firstly, what is ISO 27001 ? ISO 27001 is an Information Security Management System which helps you to effectively manage the risks to the security of your confidential data, both physically and electronically. So, ISO 27001 doesn’t just apply to those within the IT industry but to any business that holds confidential data.  It’s highly likely that you hold some level…


A non-conformance is anything that has happened that shouldn’t have.  It could be an issue with an internal process, a supplier’s performance or even a customer complaint and unfortunately, the process is often viewed negatively. There are times where some individuals will see raising a non-conformance as a ‘weakness’ and they may want to avoid…


What is the Statement of Applicability? The Statement of Applicability is a document that details which controls you have in place to manage the risks to the security of your businesses confidential or sensitive information.  It is the one document that contains every element you employ to achieve this and is therefore the most important…


Audits are a compulsory element of the ISO / BS systems and should be conducted annually.  Instead of fearing them, we want our clients to see them as a valuable business tool.  They are an opportunity to drive your management system forward, enabling continuous improvement and therefore allowing you to get the most out of…


The National Cyber Security Centre (NCSC) have conducted their first UK Cyber Survey and found ‘123456’ was the most commonly used password on breached accounts, being used by over 23 million victims. Details of the top 100,000 passwords have been released by the NCSC and they are urging users to change their passwords immediately if it is listed within the file. …


Better internal communication, stronger inter-departmental team working and a clearer focus on business objectives are just a few of the beneficial side effects of implementing management standards yet they often come as a surprise to organisations starting out on the journey to certification. One organisation which has recently discovered the unexpected business benefits of implementing…


Our world is changing at a rapid pace. As technology continues to evolve, we’re struggling to ‘stay connected’ with the latest developments.  The result? A rise in cyber-attacks! But what exactly are these hackers after? Your data, and they want it for their financial gain. Your data is an asset to your business. If it…


What is ISO Certification? ISO Certification is a seal of approval from a third party body that a company runs to one of the internationally recognised ISO management systems. The certification can be used to tender for business as a proof of a company’s credibility but also to install confidence in the potential client that you…