I was wondering if ITSM à la COBIT can be agile. The following Internet resources say yes: Delivering Disruptive Innovation Using the […]
How to implement security?
Establishing information security governance following ISO/IEC 27001 is an important first step. But how to implement real security? I’ve started to collect […]
With more and more regulations and importance of information security risk management is a growing topic. Especially in my areas of interest, […]
Internal Audit in ISO/IEC 27001
ISO/IEC 27001 clause 9.2 requires: The organization shall conduct internal audits at planned intervals to provide information on whether the information security […]