Groups
Conversations
All groups and messages
Send feedback to Google
Help
Sign in
Groups
ISO 27001 security
Conversations
Labels
About
ISO 27001 security
1–30 of 3875
Forum etiquette
These are just brief highlights of the
forum etiquette on ISO27001security.com
.
Be
polite
and
respectful
. This is a professional forum. Your involvement is a privilege not a right.
Write in
English
please (
translate.google.com
is OK)
and don't forget to tell us
your name
. What should we call you?
No advertising
other than discreet email signatures. This is
not
the place for blatant commercials and sales pitches.
Do not
circulate copyright materials
without express permission
.
We don't take prisoners. You have been warned.
Mark all as read
Report abusive group
0 selected
Ejona
, …
Arun Sivadasan
5
May 21
Internal/External context of the organisation & interested parties
Good one Chris! From: iso27001security@googlegroups.com <iso27001security@googlegroups.com> On
unread,
Internal/External context of the organisation & interested parties
Good one Chris! From: iso27001security@googlegroups.com <iso27001security@googlegroups.com> On
May 21
Satish M G
, …
Gary
4
May 20
Legal compliance - ISO27001
Dear Gary, Thank you for the advice. Warm regards, Satish Meda On Fri, May 20, 2022 at 12:43 AM Gary
unread,
Legal compliance - ISO27001
Dear Gary, Thank you for the advice. Warm regards, Satish Meda On Fri, May 20, 2022 at 12:43 AM Gary
May 20
Carisa Brockman
, …
Marappan Ramiah
15
May 19
Best Approach
Thank you, everyone, for your advice and input! Extremely helpful. On Thu, May 19, 2022 at 5:18 AM
unread,
Best Approach
Thank you, everyone, for your advice and input! Extremely helpful. On Thu, May 19, 2022 at 5:18 AM
May 19
Rohit Kumar
, …
Chris Hall
3
May 19
Revenue Decrease as a Risk
Rohit, I think that this might be reasonable risk to add to a corporate risk register but this should
unread,
Revenue Decrease as a Risk
Rohit, I think that this might be reasonable risk to add to a corporate risk register but this should
May 19
Tim Weil
, …
Søren Clausen
8
May 17
Field Notes from an ISMS Auditor (BIA Importance)
Hey Good input, I am using a simplified BIA to handle SOA 17.2.1 demand or no demand :-) It both
unread,
Field Notes from an ISMS Auditor (BIA Importance)
Hey Good input, I am using a simplified BIA to handle SOA 17.2.1 demand or no demand :-) It both
May 17
Gary
, …
Javier Escalante
7
May 13
27001 update
Thanks You El vie., 13 de mayo de 2022 3:03 p. m., Gary <gary@isect.com> escribió: Hi Javier.
unread,
27001 update
Thanks You El vie., 13 de mayo de 2022 3:03 p. m., Gary <gary@isect.com> escribió: Hi Javier.
May 13
Gary
, …
Arun Sivadasan
4
May 5
Infosec for professional services
Yes please Ed, the more the merrier. Kind regards, Gary Logo Gary Hinson Gary@isect.com IsecT Limited
unread,
Infosec for professional services
Yes please Ed, the more the merrier. Kind regards, Gary Logo Gary Hinson Gary@isect.com IsecT Limited
May 5
Gustavo Cebrián García
, …
Chris Hall
14
May 5
[New Edition of 27002:2022] Control 8.28 Secure coding
I have seen various approaches used to represent the status of controls. Some based on the original
unread,
[New Edition of 27002:2022] Control 8.28 Secure coding
I have seen various approaches used to represent the status of controls. Some based on the original
May 5
F W
, …
Gustavo Cebrián García
10
May 4
ISO 27001 Automation Tools (SaaS with Cloud Connector)
Hello Thomas, Really helpful. I will have a look at those configurations which are pulled out from
unread,
ISO 27001 Automation Tools (SaaS with Cloud Connector)
Hello Thomas, Really helpful. I will have a look at those configurations which are pulled out from
May 4
Swati Chaudhary
, …
Marappan Ramiah
3
May 4
Outsourced Development
Hello Swati, Suggest the following for your consideration : First there should be a Request for
unread,
Outsourced Development
Hello Swati, Suggest the following for your consideration : First there should be a Request for
May 4
Swati Chaudhary
,
Arun Sivadasan
2
May 2
EOL and EOS
Hi Swati, Is this for: 1) products that your organization has built and is making open source OR 2)
unread,
EOL and EOS
Hi Swati, Is this for: 1) products that your organization has built and is making open source OR 2)
May 2
Chris Hall
, …
Gary
25
Apr 30
Probably the world's simplest information risk assessment template.
Friends, This 'debate' has run its course. Let's move on, eh? As a gentle reminder, we
unread,
Probably the world's simplest information risk assessment template.
Friends, This 'debate' has run its course. Let's move on, eh? As a gentle reminder, we
Apr 30
Arun Sivadasan
Apr 30
Slack or Discord chat groups?
Hi everyone, Are there any Discord or Slack groups for ISO 27001? I like chat as a medium to connect
unread,
Slack or Discord chat groups?
Hi everyone, Are there any Discord or Slack groups for ISO 27001? I like chat as a medium to connect
Apr 30
tweil...@gmail.com
,
Gary
2
Apr 27
Data Breach Policy for the ISMS
Errrrr, I'm not entirely clear what a “data breach” or “data breach event” is, and how it differs
unread,
Data Breach Policy for the ISMS
Errrrr, I'm not entirely clear what a “data breach” or “data breach event” is, and how it differs
Apr 27
Sunil Karir
, …
Arun Sivadasan
13
Apr 26
Lead Implementor/Auditor Certs
I personally prefer the Lead Implementor course as I found the LA course spends more time on auditing
unread,
Lead Implementor/Auditor Certs
I personally prefer the Lead Implementor course as I found the LA course spends more time on auditing
Apr 26
Gaurav
, …
Gary
3
Apr 25
ISO 27001 Implementation Approach
Thanks for pointing us to the ISACA implementation guidance – nice! When you say 'get the
unread,
ISO 27001 Implementation Approach
Thanks for pointing us to the ISACA implementation guidance – nice! When you say 'get the
Apr 25
F W
Apr 25
All in One SaaS Backup solutions (Github, M365, GW, Atlassian...)
Hello together, we are looking for a third party backup provider which covers most of the common SaaS
unread,
All in One SaaS Backup solutions (Github, M365, GW, Atlassian...)
Hello together, we are looking for a third party backup provider which covers most of the common SaaS
Apr 25
Gustavo Cebrián García
,
Walt Williams
2
Apr 24
CheckList(questions) on 27001 and 27002 for 2 years Certified company and your experience on 1 day internal Audits. Example
Gustavo, Checklist? You've already passed the audit, just remediate any findings before the next
unread,
CheckList(questions) on 27001 and 27002 for 2 years Certified company and your experience on 1 day internal Audits. Example
Gustavo, Checklist? You've already passed the audit, just remediate any findings before the next
Apr 24
Arun Sivadasan
Apr 24
Restriction or license for incorporating ISO 27001 Annex A controls to a tool
Hi all, I am not sure if this is the right forum to ask. But if any of you could point me in the
unread,
Restriction or license for incorporating ISO 27001 Annex A controls to a tool
Hi all, I am not sure if this is the right forum to ask. But if any of you could point me in the
Apr 24
Hemza ATOUB
, …
Gary
6
Apr 23
Security Policy review
Thank you Gary, Best regards Hemza Le mar. 19 avr. 2022 à 21:22, Gary <gary@isect.com> a écrit
unread,
Security Policy review
Thank you Gary, Best regards Hemza Le mar. 19 avr. 2022 à 21:22, Gary <gary@isect.com> a écrit
Apr 23
Gary
, …
Walt Williams
36
Apr 19
Thoughts on the new edition of 27002?
I can. Let's say that 100% of your company's services are through the cloud, and everyone
unread,
Thoughts on the new edition of 27002?
I can. Let's say that 100% of your company's services are through the cloud, and everyone
Apr 19
tweil...@gmail.com
,
Gary
2
Apr 13
ISO 27002:2022 - impact on 27701 (Privacy) / 27017 (Cloud Security)
Mornin' Tim. Work started on updating '27017 towards the end of last year. The 'design
unread,
ISO 27002:2022 - impact on 27701 (Privacy) / 27017 (Cloud Security)
Mornin' Tim. Work started on updating '27017 towards the end of last year. The 'design
Apr 13
Gary
Apr 12
Domotics security & privacy
This morning, I've been browsing and thinking about ISO/IEC 27403, a draft ISO27k standard on the
unread,
Domotics security & privacy
This morning, I've been browsing and thinking about ISO/IEC 27403, a draft ISO27k standard on the
Apr 12
Josh Sokol
,
Gary
3
Apr 8
Product Licensing for ISO27001
Thank you so very much, Gary! I got a response within the hour when sending to one of the sales
unread,
Product Licensing for ISO27001
Thank you so very much, Gary! I got a response within the hour when sending to one of the sales
Apr 8
Douaa DADAS
, …
Marappan Ramiah
3
Apr 5
Audit report according Cobit
Hello Duoaa, ISACA has published an IT Audit framework which includes reporting. The URL is https://
unread,
Audit report according Cobit
Hello Duoaa, ISACA has published an IT Audit framework which includes reporting. The URL is https://
Apr 5
Jay Bhatt
Mar 31
First ISO 27001 Audit project
Hi Folks, I have received my first ISO 27001 audit project and I don't have much experience on
unread,
First ISO 27001 Audit project
Hi Folks, I have received my first ISO 27001 audit project and I don't have much experience on
Mar 31
Gary
Mar 30
ISMS internal audit gig
A consulting client would like to engage a competent auditor to perform an ISMS Internal Audit prior
unread,
ISMS internal audit gig
A consulting client would like to engage a competent auditor to perform an ISMS Internal Audit prior
Mar 30
Manikandan Venkatachalam
Mar 30
Consultant for ISO27001 and TISAX implementation
Hello Everyone, We're looking for an ISMS consultant to implement ISO27001 and TISAX requirements
unread,
Consultant for ISO27001 and TISAX implementation
Hello Everyone, We're looking for an ISMS consultant to implement ISO27001 and TISAX requirements
Mar 30
Gary
, …
RoscoZone
13
Mar 25
ISO/iEC 27002:2022 corrected
Thanks for confirming that, Ross. Kind regards, Gary Logo Gary Hinson Gary@isect.com IsecT Limited
unread,
ISO/iEC 27002:2022 corrected
Thanks for confirming that, Ross. Kind regards, Gary Logo Gary Hinson Gary@isect.com IsecT Limited
Mar 25
Sunil Karir
, …
Marappan Ramiah
5
Mar 25
Information Security Awareness Training
Thanks for your input Ram. On Fri, Mar 25, 2022 at 5:54 AM Marappan Ramiah <ram.marappan@gmail.com
unread,
Information Security Awareness Training
Thanks for your input Ram. On Fri, Mar 25, 2022 at 5:54 AM Marappan Ramiah <ram.marappan@gmail.com
Mar 25