Get up to speed on all the latest industry news, from ISO revisions to the latest research, and discover the newest products from Citation ISO Certification. You can also brush up on your business and ISO management skills using our detailed guides, crafted using insider knowledge from our experts.
Cyber security is important to all businesses but especially those scaling up. Businesses that don’t protect themselves as they grow can have a difficult time recovering from a cyber attack. Prioritising cyber security during business growth is essential to protect your business from threats that could hamper growth and the future of your business.
The rate at which businesses are experiencing cybersecurity breaches is alarming. The latest UK government survey found that in the last 12 months, 39% of UK businesses identified a cyber-attack. Within this, 31% of businesses estimate they were attacked at least once a week.
Cyber incidents are the biggest concern for companies globally in 2022, according to the Allianz Risk Barometer. No company is […]
Businesses are now relying on technology more than ever. That increased usage of technology presents an increased risk of cyber-security threats - from malware to phishing. To tackle this increased risk posed by the ongoing technological revolution businesses today are experiencing, experts have anticipated a new version of ISO 27001 to be released this year.
ISO 27001 and ISO 27002 are being updated this year, but what are the updates likely to involve and what should you do if you already hold an ISO 27001 certificate? Read on to find out.
With information increasingly under threat, QMS International has implemented a fully compliant ISO 27001 management system to help ensure the protection of business information.
Information security is focused on keeping your data and information safe from theft, corruption or distortion. In our digital world, […]
Ransomware attacks in the first half of 2021 have doubled with the education, retail and manufacturing sectors proving to be the most appealing targets.
Information security policies form the foundation of an organisation’s security and are featured as part of ISO 27001’s controls. But what are they and what should they include?
ISO 27001 is the international Standard for information security but how does it work to protect your organisation and its information?
The past year has shown that cyber-attacks are on the increase – and they’re gaining in sophistication too. So, what kinds of attacks are on the rise, and what can businesses do to defend themselves?
Cyber crime is becoming ever more lucrative to criminals as more and more businesses implement more digital solutions. With the number of attacks growing, more businesses are suffering the financial cost.
With cyber security becoming a hot topic due to the rise in remote working, we set out at the beginning of 2021 to find out how vulnerable SMEs are to cyber-attack, and what they are doing to protect themselves.
Typical non-conformance can help you to identify where you could make improvements to your own processes and procedures to ensure you're getting the very best out of your ISO. Here is our ISO 27001 top 10.
There’s light at the end of the COVID-19 tunnel, but what can businesses do to make sure they’re on the front foot if another pandemic takes the world by storm?
The rapid switch to remote working turned business cyber security on its head. But how prepared are SMEs for a cyber-attack, and how strong are their defences? To find out, we went and asked them.
From 1 January we will no longer be a member of the EU, and this means that there will be changes when it comes to the way we handle personal data. To help you make sure you’re ready, take a look at our Brexit checklist.
COVID-19 is still far from being banished to the back of our minds, but with the dust settling on many hastily put-together remote working solutions, what should businesses do next to shore up their information security?
Whether working remotely, heading back to the office or switching between the two, the ‘new normal’ in the wake of the pandemic has put IT teams and cyber policies under strain. But what are the risks of our new working lives, and how can you keep your business secure?
With the potential for financial loss, legal action and privacy violations, colleges and HEIs can no longer afford to ignore cyber threats. And with the recent new requirement for colleges and HEIs to have ISO 27001 certification, now is the time to act, before it’s too late.
The Information Commissioner's Office (ICO) has updated their guidance on Subject Access Requests. Read more about the changes and how they affect your business.
Cloud storage presents many benefits for the convenient availability of data, but confidentiality risks should be considered at all times. Here are five tips to tighten your cloud security:
Colleges and other education establishments are now required to implement ISO 27001 as part of their 2019/2020 contracts
If data protection hasn’t crossed your mind much since the GDPR came into effect last year, then this month’s shocking announcement by the Information Commissioner’s Office (ICO) might give you pause.
Read our tips on how small and micro businesses can protect themselves from information security threats
Following recent updates to privacy legislation, businesses now need to build data protection into their products and processes right from the design stages.
It seems like the UK’s exit from the EU is just around the corner, and there are still so many questions on what will change and how businesses will be affected.
Since the GDPR came into force in May this year, there has been a lot of confusion and misconceptions surrounding the new regulations and how they apply to both businesses and individuals.
With extra focus being placed on data protection in recent months, many organisations are left asking questions about their responsibilities toward it, especially over topics such as if they need to assign a Data Protection Officer.
In today's digital world, almost every interaction you have with an organisation will involve the sharing of your personal data. Find out what rights you have when it comes to your personal data.
Implementing the ISO 27001 Management System does not necessarily mean that you have fulfilled your responsibilities as a business handling personal data in accordance with the GDPR, but it does mean you're well on your way.
Today sees the long awaited enforcement date for the General Data Protection Act (GDPR) which sees a huge change for the way businesses store and use personal data.
A revealing report from the National Cyber Security Centre (NCSC) last month revealed that the number of cyber incidents encountered by UK businesses has not slowed, despite concerted efforts by bodies such as the NCSC to protect them from cyber threats.
Social and sporting events are coming under attack by cyber criminals. Due to the amount of people taking part, the attention garnered by such attacks can be immense. Find out how you can combat these threats.
The Health and Safety Executive (HSE) has recognised the impact that cyber attacks could have in increasing Health and Safety risks.
Reports state that, by simply updating their software, the NHS could have avoided the crippling effects of the WannaCry ransomware outbreak in May 2017
Companies that collect, store or process data relating to any EU resident will be required to comply with the new EU regulation by May 2018. But what happens if they don't?
TalkTalk has been fined a record £400,000 by the UK’s Information Commissioner’s Office (ICO) for a cyber attack that occurred last year. Find out how this relates to ISO 27001:
Find out how the General Data Protection Regulation (GDPR) - a new Regulation created by the European Commission to strengthen and unify data protection for individuals within the European Union (EU) - will affect your business.
ISO 27001 has recently undergone a revision & been re-published. The changes made should help ISO 27001 fit better alongside ISO 9001 and ISO 20000.