After covering requirements 5.1 , 4.1 e 4.2 , now is time to discuss requirement 4.3 "Determining the scope of ISMS": The requirement...

As we described in the earlier article, internal and external issues from the ISMS, we together understand the organization and its...

Now that we have Top Management Support (Requirement 5.1) as we discussed before here , it is time to start to structuring our ISMS....

The importance of parents Even if you're not a parent, you know that being a "parent" is no easy task. Following your child's growth,...

Before we delve into the subject of this article, it's crucial to reflect on something highly important, as illustrated in the image...

After introducing the standard and its structure in the previous article, today we'll begin to "run" the PDCA cycle, starting, of course,...

Some time ago, I came across a post on LinkedIn by a professional named Felipe Ramos, whom I don't know personally, but his insights...

Source: Photo by ThisisEngineering RAEng on Unplash In my recent daily readings on LinkedIn, I came across Aron Lange's post: Taking...

The ISO/IEC 27001 is an international standard that outlines a series of requirements for a company to implement an Information Security...

Definition and Structure To ensure we're on the same page, let's consider the definition that an Information Security Policy (ISP) is...