30. 3. 2020

KRUCEK has become PECB gold partner

  • PECB

Prague, 31 March 2020 – KRUCEK has become a gold partner of global training and certification body PECB KRUCEK is pleased to announce that have reached a new level of PECB GOLD PARTNER. This success is the result of hard work and a strong commitment from both companies to share their expertise with their customers to achieve the…

More
16. 6. 2022

We invite you to the new PECB ISO/IEC 27002 – Information Security Controls courses

  • ISMS
  • ISO 27002
  • PECB

In February 2022, ISO/IEC 27002 was updated to provide a set of general information security controls and guidelines for their implementation. PECB has updated and released courses in all levels to interested parties, of which we recommend the following two courses: PECB ISO/IEC 27002 Foundation – an essential course designed to introduce you to the information…

More
2. 10. 2022

The PECB ISO 31000 Risk Manager course is now available in the Czech

  • ERM
  • ISO 31000
  • PECB
  • Risk

Risks are present in every aspect of our lives, from mundane everyday activities to complex business decisions. The most crucial framework for risk management is the international standard ISO 31000, which defines principles, best practices and guidelines for managing the risks faced by organizations. Due to the topic’s importance and clients’ interest, we have proceeded…

More
18. 10. 2022

The ISO 21502 Lead Project Manager course is now available!

  • ISO 21501
  • Project Management

We are pleased to have added the updated PECB ISO 21502 Lead Project Manager course to our offering. ISO 21502 has replaced the previous ISO 21500:2012 standard. The reasonably extensive changes that have taken ISO 21502 to a whole new level include the following: The concept of project management has been expanded to include the sponsoring…

More
26. 10. 2022

ISO/IEC 27001:2022 and ISO/IEC 27005:2022 are published

  • ISMS
  • ISO 27001
  • ISO 27005
  • ISRM

We are pleased to announce that the updated ISO/IEC 27001:2022 and ISO/IEC 27005:2022 standards were published on October 25, 2022.  Training courses PECB will release new PECB ISO/IEC 27001 Lead Implementer and ISO/IEC 27001 Lead Auditor training courses and a new Transition training course in English on 11/11/2022. KRUCEK will translate these courses into English to…

More
4. 12. 2022

New courses on security management system (SMS) according to ISO 28000

We have expanded our PECB course offerings to include security management systems, including supply chain security based on ISO 28000. ISO 28000 is an international standard that specifies aspects to help an organisation assess and manage security threats in the supply chain. Security management is also related to other security aspects of managing an organisation….

More
5. 3. 2023

KRUCEK is platinum!

KRUCEK has become a platinum partner of PECB, making it one of PECB’s top global partners.

More
6. 9. 2023

New PECB courses in information and cyber security

From autumn, we are expanding our range of courses in the field of information and cyber security to include the PECB NIS 2 Lead Implementer and PECB Chief Information Security Officer (CISO) courses. The courses will be available in English from November 2023, and we plan to launch the Czech version at the beginning of…

More
22. 2. 2024

How to use artificial intelligence? How to transform digitally? Our new courses will answer your questions

The PECB family of courses is expanding with another category called DIGITAL TRANSFORMATION. In it you can find ISO/IEC 42001 Artificial Intelligence, Digital Transformation, ISO/IEC 38500 IT Governance and the existing ISO/IEC 20000 Service Management.  Artificial Intelligence   The world is witnessing the continuous development of artificial intelligence (AI), and there is a growing need for effective…

More
15. 1. 2020

Privacy Information Management Systems (PIMS) based on ISO/IEC 27701

  • GDPR
  • ISO/IEC 27701
  • PIMS
  • Privacy

In the modern age is privacy protection a necessity due to the ever-increasing rate of digitization, whereas addressing access to personal data in a legitimate way. In addition, information security is concerned with ensuring the confidentiality, integrity and availability of personal data. Information security and privacy protection are interrelated; privacy cannot be ensured without introducing security measures.

More
21. 3. 2020

Prevention of SARS-CoV-2 coronavirus-related cyber fraud

  • Cybersecurity
  • pandemic
  • phishing

Given the current situation and possible fraud, we provide preventive warnings to individuals. Cyber attackers can send emails with malicious attachments or links to fraudulent websites to trick their victims into unveiling sensitive information or donating funds to fraudulent charities or individuals.

More
25. 4. 2020

Risk management based on ISO 31000

All organisations are exposed to internal and external influences that create uncertainty as to whether they will be able to achieve their goals. Risk management helps organisations identify potential threats and opportunities, identify appropriate strategies, and make informed decisions. Risk management is an essential part of the governance and management of an organisation at all…

More
8. 8. 2020

Certification of Privacy Information Management Systems (PIMS) using ISO/IEC TS 27006-2

  • Audit
  • ISM 27001
  • ISMS
  • ISO 27701
  • PIMS

The new International Standard ISO/IEC TS 27006-2, which specifies requirements and provides guidance to bodies auditing and certifying a personal data management system (PIMS) according to ISO/IEC 27701 in combination with ISO/IEC 27001, should be published shortly. Therefore, it is becoming increasingly clear what requirements certification bodies will have to comply with and how these requirements…

More
26. 8. 2020

Business Impact Analysis based on ISO/TS 22317

  • BCMS
  • BIA
  • ISO 22317

Business Impact Analysis (BIA) is the first step in a business continuity program. For ensuring business continuity, it is essential to know and understand the adverse effects that disruption of the supply of products and services would have on the organisation and stakeholders. The impact of disruptions usually increases over time – it may be negligible…

More
29. 3. 2021

Governance of information security

  • Governance
  • ISMS
  • ISO 27001

In smaller organisations, the accurate setup of direction and control of information security is relatively simple, especially when the scope of ISMS covers the entire organisation. For larger, geographically dispersed or more complex organisations, the situation is more complicated. In these cases, it is common that the ISMS covers only a part of the entity (organisation…

More
14. 4. 2021

The relationship between cybersecurity and information security

  • Cybersecurity
  • ISMS
  • ISO 27001

Information security and cybersecurity are closely related and overlap but have different goals. Information security addresses the confidentiality, integrity and availability of information, while cybersecurity is primarily concerned with protecting the lives, health and property of people and organisations, society and nations as a whole.

More
13. 7. 2021

New ISO 37301 standard enables the organisation to be certified in compliance management

  • CMS
  • Compliance
  • ISO 19600
  • ISO 37001

Generally, binding laws, standards and various norms determining the rules of conduct are an everyday part of our lives. Enormous developments, especially in information technology, business approaches and related regulations, force organisations, whether in the private or public sector, to streamline their activities. When it comes to efficiency in managing the management and control of…

More
14. 7. 2021

Privacy risk management

  • ISO/IEC 27701
  • PII
  • PIMS
  • Privacy
  • Risk

Information security and privacy are closely linked. And setting the right level of information security and privacy cannot be done without managing risks that can affect both organisations and individuals. Information security and privacy risks Information security risks relate to breaches of the confidentiality, integrity and availability of business processes or information. Organisations may use…

More
12. 10. 2021

The new ISO/IEC 27002 brings new information security controls

  • ISMS
  • ISO 27001
  • ISO 27002

The currently valid international standard ISO/IEC 27002 was issued in 2013. A new version will soon replace it. The new structure introduces a breakdown of information security controls according to categories and several other attributes. The latest version of the standard defines new controls, changes the original controls and combines some controls. This article briefly describes the…

More
31. 1. 2022

Organisational resilience 

  • ISO 22316
  • Resilience

A resilient organisation can anticipate and respond to threats and opportunities arising from sudden or gradual change. In order to meet its objectives, thrive and survive, the organisation must be able to absorb change and adapt to a changing environment. Increasing resilience should therefore be a strategic goal of each organisation. Many factors influence the true resilience…

More
18. 4. 2022

Assessing the level of organisational governance

  • Governance
  • GRC
  • ISO 37000
  • ISO 37004

The need for effective corporate governance is becoming increasingly important. All stakeholders expect organisations that directly affect their lives to be well governed, beyond mere financial indicators. The governing body is responsible for establishing and maintaining the governance framework of the organisation to achieve effective performance, responsible management, ethical behaviour. Conditions, principles and aspects of…

More
29. 5. 2022

Gap analysis of the management system and controls

  • Analysis
  • GAP
  • MS

Organisations implement management systems and relevant controls in accordance with international ISO standards or specific legal or regulatory requirements. Gap analysis is used to identify the current state and to determine the activities needed to move to the desired end state. The benchmark is based on relevant statutory, regulatory or normative requirements and recommendations. The…

More
3. 6. 2022

The PECB ISO/IEC 27001 LI and ISO/IEC 27001 LA courses have been adapted to the new ISO/IEC 27002 standard and are now also in Czech

  • Cybersecurity
  • ISMS
  • ISO 27001
  • ISO 27002

In February this year, the International Organization for Standardization (ISO) released a new version of ISO/IEC 27002, which provides recommendations for information security measures. This change will affect ISO/IEC 27001, which specifies requirements for information security management systems (ISMS), respectively its Annex A, which is linked to ISO/IEC 27002. In response to these changes, PECB has…

More
20. 7. 2022

PECB Obtains Accreditation by ANAB

  • ISO 22301
  • ISO 27001
  • ISO 31000
  • ISO 37001
  • ISO 9001

We are happy to share another exciting achievement with you that will once more give you confidence that PECB courses meet the highest standards. After a rigorous assessment and review, on June 15, 2022, PECB has been accredited by the ANSI National Accreditation Board (ANAB) for the provision of certificate program services, for fulfilling the requirements…

More
7. 3. 2023

More influence with a smaller footprint: How does ISO 26000 help organisations strengthen social and environmental responsibility?

  • ESG
  • GRC
  • ISO 26000

The relationship between organisations and the world around them is becoming increasingly important as public pressure on organisations to behave responsibly and comply with corporate social responsibility standards has increased significantly. Organisations around the world should take the necessary measures. ISO 26000 provides a framework for organisations to identify and address the social and environmental impacts…

More
13. 7. 2023

New ISO/IEC 27032:2023 Cybersecurity – Guidelines for Internet security has been released

  • Cybersecurity
  • ISMS
  • ISO 27001
  • ISO 27002
  • ISO 27032
  • ISO 27701

ISO/IEC 27032:2023 Cybersecurity – Guidelines for Internet security was released in June, replacing ISO/IEC 27032:2012 Information technology – Security techniques – Guidelines for cybersecurity. The Internet is a global network that organisations use for all communications. As some actors target their attacks on these networks, addressing the relevant security risks is very important. This standard focuses…

More
13. 11. 2023

Revised course for cybersecurity managers

The ISO/IEC 27032 Lead Cybersecurity Manager training course has undergone a major update. It will be called Lead Cybersecurity Manager. One of the main reasons for the name change is the changes in ISO/IEC 27032.  The new edition of ISO/IEC 27032, titled “Cybersecurity – Guidelines for Internet Security”, has been narrowed down to only addressing issues…

More
7. 3. 2024

KRUCEK wins gold!

We are pleased to announce that we have achieved the PECB GOLD PARTNER level for the past year. This award will accompany us throughout 2024 and we are proud of our long-standing cooperation with PECB. This additional award is the result of hard work and a strong commitment by both companies to share their expertise with…

More
19. 4. 2024

New ISO/IEC 42001 – Information Technology – Artificial Intelligence – Management System

  • AI
  • AIMS
  • ISO 42001

At the end of 2023, a brand new standard, ISO/IEC 42001:2023 Information Technology – Artificial Intelligence – Management System, was released that specifies requirements and provides recommendations for the creation, implementation, maintenance and continuous improvement of an artificial intelligence management system (AIMS). The standard is applicable to any organisation that provides or uses products or services…

More
20. 6. 2024

Responsible AI: Move Fast and Stay Safe

  • AI
  • AIGovernance

Artificial intelligence has become a big technology hit in the last year, bringing with it huge promise and potential. Businesses in every industry are eager to leverage AI to improve customer experience, increase operational efficiency, and gain a competitive advantage. And so, in small or big steps, companies and their executives are integrating AI throughout the organization….

More
23. 7. 2024

Digital Operational Resilience Act (DORA)

  • Continuity
  • Cybersecurity
  • DORA

Banks, insurance companies, investment funds, credit rating agencies, securities dealers and many other entities in the financial sector will be affected by the upcoming DORA regulation, or Digital Operational Resilience Act. The DORA Regulation was adopted by the European Parliament and the Council of the European Union on 14 December 2022, Regulation (EU) 2022/2554, and…

More
9. 9. 2024

New Strategic Focus: Digital Trust

  • AI
  • Continuity
  • Cybersecurity
  • DORA
  • GRC

We are experiencing a digital transformation. Not only artificial intelligence, but also other digital technologies bring new challenges. To succeed together in this fast-changing world, we need to be one step ahead. That’s why, after careful consideration, together with our long-standing partner, we have decided to focus our direction on Digital Trust, i.e. trust in digital…

More