Prague, 31 March 2020 – KRUCEK has become a gold partner of global training and certification body PECB KRUCEK is pleased to announce that have reached a new level of PECB GOLD PARTNER. This success is the result of hard work and a strong commitment from both companies to share their expertise with their customers to achieve the…
The last 2 years have brought huge changes into the personal and professional lives of all of us. Most communication takes place remotely and this new trend needs to be countered. That is why we are significantly and permanently reducing the prices of online courses! Certification courses will be even more affordable, the quality remains…
In February 2022, ISO/IEC 27002 was updated to provide a set of general information security controls and guidelines for their implementation. PECB has updated and released courses in all levels to interested parties, of which we recommend the following two courses: PECB ISO/IEC 27002 Foundation – an essential course designed to introduce you to the information…
Risks are present in every aspect of our lives, from mundane everyday activities to complex business decisions. The most crucial framework for risk management is the international standard ISO 31000, which defines principles, best practices and guidelines for managing the risks faced by organizations. Due to the topic’s importance and clients’ interest, we have proceeded…
We are pleased to have added the updated PECB ISO 21502 Lead Project Manager course to our offering. ISO 21502 has replaced the previous ISO 21500:2012 standard. The reasonably extensive changes that have taken ISO 21502 to a whole new level include the following: The concept of project management has been expanded to include the sponsoring…
We are pleased to announce that the updated ISO/IEC 27001:2022 and ISO/IEC 27005:2022 standards were published on October 25, 2022. Training courses PECB will release new PECB ISO/IEC 27001 Lead Implementer and ISO/IEC 27001 Lead Auditor training courses and a new Transition training course in English on 11/11/2022. KRUCEK will translate these courses into English to…
We have expanded our PECB course offerings to include security management systems, including supply chain security based on ISO 28000. ISO 28000 is an international standard that specifies aspects to help an organisation assess and manage security threats in the supply chain. Security management is also related to other security aspects of managing an organisation….
We have added EBIOS Risk Manager (EBIOS RM) to our product portfolio – a method for assessing and treating digital risks, published by the National Cybersecurity Agency of France (ANSSI) with the support of the EBIOS Club. It provides a set of instruments that can be tailored according to project objectives. It is compatible with existing reference…
KRUCEK has become a platinum partner of PECB, making it one of PECB’s top global partners.
From autumn, we are expanding our range of courses in the field of information and cyber security to include the PECB NIS 2 Lead Implementer and PECB Chief Information Security Officer (CISO) courses. The courses will be available in English from November 2023, and we plan to launch the Czech version at the beginning of…
The PECB family of courses is expanding with another category called DIGITAL TRANSFORMATION. In it you can find ISO/IEC 42001 Artificial Intelligence, Digital Transformation, ISO/IEC 38500 IT Governance and the existing ISO/IEC 20000 Service Management. Artificial Intelligence The world is witnessing the continuous development of artificial intelligence (AI), and there is a growing need for effective…
In the modern age is privacy protection a necessity due to the ever-increasing rate of digitization, whereas addressing access to personal data in a legitimate way. In addition, information security is concerned with ensuring the confidentiality, integrity and availability of personal data. Information security and privacy protection are interrelated; privacy cannot be ensured without introducing security measures.
Natural disasters, fires, cyber-attacks, epidemics or supply chain problems are known threats that can threaten the business activities of any organization. The best protection is to prevent possible disruptions and prepare for the moment when an emergency occurs.
Given the current situation and possible fraud, we provide preventive warnings to individuals. Cyber attackers can send emails with malicious attachments or links to fraudulent websites to trick their victims into unveiling sensitive information or donating funds to fraudulent charities or individuals.
Given the threat of coronaviruses, you must be prepared for various unexpected scenarios. Here are some recommendations to ensure the continuity of your business.
All organisations are exposed to internal and external influences that create uncertainty as to whether they will be able to achieve their goals. Risk management helps organisations identify potential threats and opportunities, identify appropriate strategies, and make informed decisions. Risk management is an essential part of the governance and management of an organisation at all…
The new International Standard ISO/IEC TS 27006-2, which specifies requirements and provides guidance to bodies auditing and certifying a personal data management system (PIMS) according to ISO/IEC 27701 in combination with ISO/IEC 27001, should be published shortly. Therefore, it is becoming increasingly clear what requirements certification bodies will have to comply with and how these requirements…
Business Impact Analysis (BIA) is the first step in a business continuity program. For ensuring business continuity, it is essential to know and understand the adverse effects that disruption of the supply of products and services would have on the organisation and stakeholders. The impact of disruptions usually increases over time – it may be negligible…
In smaller organisations, the accurate setup of direction and control of information security is relatively simple, especially when the scope of ISMS covers the entire organisation. For larger, geographically dispersed or more complex organisations, the situation is more complicated. In these cases, it is common that the ISMS covers only a part of the entity (organisation…
Information security and cybersecurity are closely related and overlap but have different goals. Information security addresses the confidentiality, integrity and availability of information, while cybersecurity is primarily concerned with protecting the lives, health and property of people and organisations, society and nations as a whole.
Generally, binding laws, standards and various norms determining the rules of conduct are an everyday part of our lives. Enormous developments, especially in information technology, business approaches and related regulations, force organisations, whether in the private or public sector, to streamline their activities. When it comes to efficiency in managing the management and control of…
Information security and privacy are closely linked. And setting the right level of information security and privacy cannot be done without managing risks that can affect both organisations and individuals. Information security and privacy risks Information security risks relate to breaches of the confidentiality, integrity and availability of business processes or information. Organisations may use…
The currently valid international standard ISO/IEC 27002 was issued in 2013. A new version will soon replace it. The new structure introduces a breakdown of information security controls according to categories and several other attributes. The latest version of the standard defines new controls, changes the original controls and combines some controls. This article briefly describes the…
A resilient organisation can anticipate and respond to threats and opportunities arising from sudden or gradual change. In order to meet its objectives, thrive and survive, the organisation must be able to absorb change and adapt to a changing environment. Increasing resilience should therefore be a strategic goal of each organisation. Many factors influence the true resilience…
The need for effective corporate governance is becoming increasingly important. All stakeholders expect organisations that directly affect their lives to be well governed, beyond mere financial indicators. The governing body is responsible for establishing and maintaining the governance framework of the organisation to achieve effective performance, responsible management, ethical behaviour. Conditions, principles and aspects of…
PECB ISO 9001 training courses have been thoroughly revised and are now available to you. The updates have affected both the content and the design: the content has been updated to reflect the latest trends, practices, standards and examples in the industry, while the design has been updated to aid understanding and readability. Updates are…
Organisations implement management systems and relevant controls in accordance with international ISO standards or specific legal or regulatory requirements. Gap analysis is used to identify the current state and to determine the activities needed to move to the desired end state. The benchmark is based on relevant statutory, regulatory or normative requirements and recommendations. The…
In February this year, the International Organization for Standardization (ISO) released a new version of ISO/IEC 27002, which provides recommendations for information security measures. This change will affect ISO/IEC 27001, which specifies requirements for information security management systems (ISMS), respectively its Annex A, which is linked to ISO/IEC 27002. In response to these changes, PECB has…
We are happy to share another exciting achievement with you that will once more give you confidence that PECB courses meet the highest standards. After a rigorous assessment and review, on June 15, 2022, PECB has been accredited by the ANSI National Accreditation Board (ANAB) for the provision of certificate program services, for fulfilling the requirements…
The relationship between organisations and the world around them is becoming increasingly important as public pressure on organisations to behave responsibly and comply with corporate social responsibility standards has increased significantly. Organisations around the world should take the necessary measures. ISO 26000 provides a framework for organisations to identify and address the social and environmental impacts…
ISO/IEC 27032:2023 Cybersecurity – Guidelines for Internet security was released in June, replacing ISO/IEC 27032:2012 Information technology – Security techniques – Guidelines for cybersecurity. The Internet is a global network that organisations use for all communications. As some actors target their attacks on these networks, addressing the relevant security risks is very important. This standard focuses…
The ISO/IEC 27032 Lead Cybersecurity Manager training course has undergone a major update. It will be called Lead Cybersecurity Manager. One of the main reasons for the name change is the changes in ISO/IEC 27032. The new edition of ISO/IEC 27032, titled “Cybersecurity – Guidelines for Internet Security”, has been narrowed down to only addressing issues…
We are pleased to announce that we have achieved the PECB GOLD PARTNER level for the past year. This award will accompany us throughout 2024 and we are proud of our long-standing cooperation with PECB. This additional award is the result of hard work and a strong commitment by both companies to share their expertise with…
At the end of 2023, a brand new standard, ISO/IEC 42001:2023 Information Technology – Artificial Intelligence – Management System, was released that specifies requirements and provides recommendations for the creation, implementation, maintenance and continuous improvement of an artificial intelligence management system (AIMS). The standard is applicable to any organisation that provides or uses products or services…
Artificial intelligence has become a big technology hit in the last year, bringing with it huge promise and potential. Businesses in every industry are eager to leverage AI to improve customer experience, increase operational efficiency, and gain a competitive advantage. And so, in small or big steps, companies and their executives are integrating AI throughout the organization….
Banks, insurance companies, investment funds, credit rating agencies, securities dealers and many other entities in the financial sector will be affected by the upcoming DORA regulation, or Digital Operational Resilience Act. The DORA Regulation was adopted by the European Parliament and the Council of the European Union on 14 December 2022, Regulation (EU) 2022/2554, and…