Business Impact Analysis (BIA) is the first step in a business continuity program. For ensuring business continuity, it is essential to know and understand the adverse effects that disruption of the supply of products and services would have on the organisation and stakeholders. The impact of disruptions usually increases over time – it may be negligible…
The new International Standard ISO/IEC TS 27006-2, which specifies requirements and provides guidance to bodies auditing and certifying a personal data management system (PIMS) according to ISO/IEC 27701 in combination with ISO/IEC 27001, should be published shortly. Therefore, it is becoming increasingly clear what requirements certification bodies will have to comply with and how these requirements…
All organisations are exposed to internal and external influences that create uncertainty as to whether they will be able to achieve their goals. Risk management helps organisations identify potential threats and opportunities, identify appropriate strategies, and make informed decisions. Risk management is an essential part of the governance and management of an organisation at all…
Natural disasters, fires, cyber-attacks, epidemics or supply chain problems are known threats that can threaten the business activities of any organization. The best protection is to prevent possible disruptions and prepare for the moment when an emergency occurs.
In the modern age is privacy protection a necessity due to the ever-increasing rate of digitization, whereas addressing access to personal data in a legitimate way. In addition, information security is concerned with ensuring the confidentiality, integrity and availability of personal data. Information security and privacy protection are interrelated; privacy cannot be ensured without introducing security measures.