Blog

An authorization matrix is an important tool within organizations to manage access rights to systems and sensitive data. It provides insight into who has what rights and ensures that only authorized individuals have access to relevant information. In this article, we...

When it comes to information security, there are several measures an organization can take to ensure that sensitive information remains secure. Two of these measures are the Clean Desk Policy and the Clear Screen Policy. In this article, we will take a closer look at...

A statement of applicability (SoA) is a document used to establish the relevance and degree of compliance with certain norms and standards within an organization. It is often prepared as part of certification processes, such as ISO certifications. How does it differ...

In today's digital world, ensuring information security is vital for organizations. The loss or theft of sensitive information can have serious consequences, including reputational damage, financial loss, and legal liability. To minimize these risks, more and more...

In these modern times when businesses and organizations depend on technology, information security is essential. Cloud service companies deal with large amounts of sensitive information stored in the cloud. It is therefore important that they ensure that this...

ISO 27001 is a standard that deals with information security. The premise of this standard is that an organization must establish an information security management system (ISMS). That management system must ensure that information security is adequate and...

You've probably heard of the term security island. But what exactly is it? And is it a desirable or undesirable situation? In this article, we address these questions so you can better understand what a security island is and how to deal with it. What is a security...

Implementing the ISO 27001 standard is not a one-off project. It is the start of a process of continuous improvement. Strangely enough, this process can become more and more fun. As an organization you are developing more and more clarity, you are scrapping and...

  Information security is one of the most important components of any business in our current digital age. To ensure that information remains secure, companies must implement appropriate policies and procedures. These information security policies must protect...

    ISO certification is a voluntary process by which organizations can demonstrate their commitment to quality and safety standards. The International Organization for Standardization (ISO) is a global governing body that sets standards among other quality,...