KRUCEK>Expert Articles

Expert Articles

8. 12. 2025

A comprehensive approach to IACS cyber security according to ISA/IEC 62443

  • Cybersecurity
  • ISA/IEC 62443
  • PECB

The ISA/IEC 62443 series of standards represents the only globally consensus, comprehensive set of standards focused on Industrial Automation and Control Systems (IACS) security. This portfolio of standards and technical reports establishes a common vocabulary, risk model and control framework for industrial cybersecurity across industries. It addresses the entire security lifecycle of industrial systems, from initial…

More
7. 11. 2025

New ISO/IEC 27018 – Guidelines for the protection of personal data in public clouds acting as PII processors

  • Cloud
  • ISO/IEC 27001
  • ISO/IEC 27002
  • ISO/IEC 27018
  • Personal data protection

ISO recently published the second edition of ISO/IEC 27018 – Guidelines for the protection of personal data in public clouds acting as PII processors. ISO/IEC 27018 provides guidelines for the protection of personal data in public cloud services, in particular when the cloud service provider acts as a processor of personal data. This standard, based on…

More
29. 9. 2025

ICT continuity according to ISO/IEC 27031 in the context of NIS 2 and DORA

  • Business Continuity
  • DORA
  • ICT continuity
  • ISO/IEC 27031

In today’s digitally connected world, continuity of information and communication technologies (ICT) is crucial to the continuous operation of any organisation. Ensuring digital resilience is becoming a priority, underlined by new regulations such as NIS 2 and DORA, which place significant demands on entities. ISO/IEC 27031 provides valuable guidance for managing ICT business continuity (IRBC) readiness,…

More
15. 8. 2025

New ISO/IEC 27031:2025 – ICT readiness for business continuity has been released

  • Continuity
  • Cybersecurity
  • ICT
  • ISO 27031

In May 2025, an updated ISO/IEC 27031:2025 – Cybersecurity – Information and communication technology preparedness for business continuity was released. What is ISO/IEC 27031? ISO/IEC 27031 provides guidelines for ensuring information and communication technology (ICT) readiness to support business continuity. It establishes a framework for ICT preparedness that aligns with broader business continuity objectives and helps…

More
27. 2. 2025

Integrating AI management, information security and privacy

  • AIMS
  • ISMS
  • ISO/IEC 27001
  • ISO/IEC 27701
  • ISO/IEC 42001
  • PIMS

This article summarizes information from a webinar on the integration of AI management, information security and privacy on February 25, 2025. The webinar focused on AI systems and AI management systems (AIMS) according to ISO/IEC 42001, objectives and measures in relation to AI systems, the relationships between ISO/IEC 42001, ISO/IEC 27001 and ISO/IEC 27701, and specific…

More