01 Oct ISO 27001 Certification | Category - Pivot Point Security Don’t Assume Your IT Staff Will “Handle” ISO 27001 Certification January 12, 2024 By Richard Barrus ISO 27001 certification is a significant undertaking that impacts many areas of your business. You want to be aligned with be... Continue reading
30 Sep ISO 27001 Certification | Category - Pivot Point Security ISO 27001 Doesn’t Tell You How to Implement Controls – Your Scope and Risk Do January 13, 2024 By Richard Barrus In our ISO 27001-as-a-Service practice, we encounter a lot of misconceptions that can cause organizations to stumble on their path to I... Continue reading
28 Sep ISO 27001 Certification | Category - Pivot Point Security You Don’t Define Your ISO 27001 Scope – Your Information Does January 19, 2024 By Richard Barrus In the ISO 27001 framework, the most important element is scope. But because ISO 27001 isn’t as prescriptive as some other cybersecurit... Continue reading
27 Sep ISO 27001 Certification | Category - Pivot Point Security ISO 27001 Certification Shouldn’t Start with a Gap Assessment January 18, 2024 By Richard Barrus In our ISO 27001-as-a-Service practice, the single most common mistake we see with organizations prepping for ISO 27001 certification i... Continue reading
17 Jun ISO 27001 Certification | Category - Pivot Point Security ISO 27701 Privacy Extension “Lessons Learned”: Data Mapping January 13, 2024 By Richard Barrus The new ISO 27701 “certifiable extension” to ISO 27001 lets you add a Privacy Information Management System (PIMS) to your Information ... Continue reading