Browse our site

Search for.... iso 27001 (2)

Blog (65) ISO 27001 Trans­ition Guide (1) Remove
Blog

Penetration Test vs ISO 27001 Certification: Which Is Right for Your Organization?

In today’s evolving threat landscape, organizations often face a critical question: Is a penetration test enough to prove security readiness, or is ISO 27001 certification the better route? Both play vital roles in an information security strategy, but they serve different purposes. Understanding the distinction is key to making the right investment in your security posture.
Show more
Blog

Resources, Competence, Awareness, Communication: Navigating ISO 27001 Clauses 7.1 – 7.4

In this blog post, we're delving into the interconnected clauses of Resources, Competence, Awareness, and Communication (Clauses 7.1 – 7.4) under ISO 27001. These clauses work seamlessly together, addressing crucial aspects for an effective Information Security Management System (ISMS). As we explore, keep these fundamental questions in mind: Do you have what's needed? Are the right people dealin...
Show more
Blog

A Strategic Approach to ISO 27001 Implementation

Welcome to our blog page dedicated to the implementation of an Information Security Management System (ISMS) in accordance with the ISO 27001 standards. As organisations worldwide navigate through an increasingly complex digital landscape, safeguarding sensitive information and ensuring robust cybersecurity measures have become paramount. For senior Chief Information Security Officers (CISOs) and...
Show more
Blog

Securing Information Security Excellence with the Latest ISO 27001:2022 Certification with DQS

DQS is thrilled to announce that we have achieved ANAB accreditation for providing certification services to the 2022 edition of ISO 27001 certification. We are now able to offer initial and transition audits to ISO 27001:2022 as well as gap assessments. This accreditation is a significant milestone for us, as it allows us to offer comprehensive and up-to-date information security certification s...
Show more
Blog

TISAX® vs ISO 27001

As digitalization accelerates across industries, information security has become a central pillar of corporate governance, regulatory compliance, and customer trust. When choosing an information security framework, organizations are often faced with a key question: Should we adopt the globally recognized ISO/IEC 27001 standard, or the automotive-specific TISAX® framework? This article outlines t...
Show more
Blog

Integrating your data security system: Mapping ISO 42001 with ISO 27001 and ISO 27701

A new standard ISO 42001 for managing the use of Artificial Intelligence and Language Learning Models within organisations has recently been released. The standard sets a framework for organisations to govern, implement, and continually improve AI systems in a trustworthy, ethical, and accountable manner. Combined with ISO 27001 and ISO 27701, this are very quickly becoming the “Big 3” of modern ...
Show more
Blog

Embarking on the ISO 27001 Journey with DQS: Strengthening Information Security

In the era of Industry 4.0, organisations face the challenge of protecting their valuable information and data from a multitude of risks. From external disruptions to technical errors and industrial espionage, the threats to information security are complex and ever evolving. Recognising these challenges and implementing effective measures to protect information assets is crucial for the success ...
Show more
Blog

ISO 27001 Demystified

So, your company has been tasked with ISO 27001 compliance. What exactly does this entail? What steps should you take?In this blog post, we aim to address these questions, providing you with clear guidance on what needs to be done to get you to certification stage.
Show more
Blog

Implementing Web Filtering and Encryption in Line with ISO 27001 Controls A.8.23 – A.8.24

As digital threats continue to evolve, controlling how users access the internet and protecting data through encryption are essential elements of any modern information security management system (ISMS). These are addresses through the two key controls: A.8.23 Web Filtering and A.8.24 Use of Cryptography in ISO 27001:2022. In this post, we explore these controls and provide practical tips on how ...
Show more
Blog

AWS and Azure Are ISO 27001 Certified — But That Doesn't Mean Your Company Is

"We run everything on AWS. AWS has ISO 27001 certification. So we should be covered, right?"This is one of the most common — and most consequential — misunderstandings among IT managers and business decision-makers in Hong Kong. As cloud adoption accelerates across the city's financial services, logistics, healthcare, and professional services sectors, more enterprises are migrating core systems ...
Show more