Search Results for: isms

Implementing an ISO27001 compliant Information Security Management System (ISMS) can be an intimidating task, especially if one has no prior knowledge of the Standard. An ISMS is a systematic approach to managing risks related to valuable information assets (organisation information) to ensure it remains secure. This approach includes people, processes and systems. An ISMS preserves the confidentiality, integrity, and availability of information by applying a risk management process.

The event was a huge success with more than 130 attendees. The evening kicked off with Privasec’s Director, Romain Rallu demystifying ISMS followed by Privasec DroneSec’s CTO, Mike Monnik’s presentation on Drone Security. A big thanks to the keynote speaker Nathan Hillery, panel speakers Darren Shearsby, Michael Cracroft & Laura Lees and Privasec’s Consultant, Vivienne Mutembwa for moderating the

Here’s a quick recap of the different activities Privasec was involved in the month of June

Privasec is really excited to introduce our first ever master class training workshops. Learn from our experienced GRC or Purple Team specialists about the latest regulations and techniques in this one day knowledge-transfer session. Have your pick from our 5 different workshops! These are especially designed to help our IT and security professionals upskill and sharpen their knowledge on security and risks. Limited spots are available, so grab your tickets now. The links below include more details about each workshops.

Privasec’s Cyber Security Advisor for APAC, Shamane Tan wrote an article about the Open Group FAIR framework. This framework provides a structured and community vetted approach to calculate the Return on Investment (ROI) on cybersecurity controls. Read the full article here.

Despite the heavy rain this morning, attending an educational breakfast presentation hosted by Lloyd’s Register together with Privasec was a great way to start the day! It was quite enjoyable hearing from our very own Dr. Ignatius Swart as he demystified ISO 27001:2013, discussed common misconceptions, and explained what is really required for businesses to obtain certification. He was such a natural, having previously been invited to speak many times at huge conferences attended by ministers, defence and government bodies. This morning, he delivered a fantastic presentation in a clear and concise manner, going through 10 ISO27001 misconceptions that debunked incorrect theories and perceptions commonly stopping businesses from getting ISO 27001:2013 certified.

ISO 27001:2013 is one of the most widely recognized and internationally accepted information security standards. It identifies requirements for a comprehensive Information Security Management System (ISMS), and defines how organizations should manage and handle information in a secure manner, including appropriate security controls and establishes requirements for information controls to manage people, processes and technology.