Wayne MaCcaw
Bio
I'm an experienced Information Security professional with huge experience of both in-house and private practice. Possessing a thorough understanding of the key drivers behind effective IT and Information Security solutions.
Stories (13/0)
Benefits of Implementing ISO 27001
What Are the Advantages of Implementing ISO 27001? In a previous discussion, we explored the essence of 'ISO 27001 - What Is It?' Now, we aim to delve deeper into the advantages that stem from implementing this standard and attaining certification.
By Wayne MaCcaw7 months ago in Education
Information Security Management Systems, ISO 27001 and the Benefits of Implementation
This blog takes a back-to-basics approach, focusing on the fundamentals of information security and ISO 27001 certification. It begins by examining the core component—the information security management system (ISMS), commonly referred to as such.
By Wayne MaCcaw8 months ago in Education
ISO 27002:2022 Update
ISO 27002 serves the purpose of furnishing organizations with guidance pertaining to the selection, implementation, and management of information security controls. This guidance takes into consideration the unique information security risk environment and tolerance of the respective organization.
By Wayne MaCcaw9 months ago in Education
How Do You Implement a Successful ISMS?
To ensure a successful ISO 27001 implementation, it is important to involve the key individuals and groups responsible for managing information security in your organization. This includes the ISO 27001 implementation team, which will oversee the entire implementation process, ensuring that it aligns with the goals and objectives of the organization. The team will also be responsible for coordinating and managing the various activities involved in the implementation.
By Wayne MaCcaw9 months ago in Education
How do you avoid information security breaches
Given the frequent news coverage of high-profile information security breaches, it is natural for many of us to wonder how we can prevent becoming the subject of negative headlines. Let's explore where we can begin to address this concern.
By Wayne MaCcaw9 months ago in Education
Everything You Need to Know About ISO 27001 Certification
ISO 27001 certification is the process of obtaining official recognition from an independent and accredited certification body (CB) that an organization's Information Security Management System (ISMS) complies with the requirements outlined in the ISO 27001 standard.
By Wayne MaCcaw9 months ago in Education
What are the basics of internal auditing
In this blog, the focus shifts towards internal audit, specifically in the context of ISO 27001 certification, the International Standard for Information Security Management. We will take a step back and examine internal auditing from the perspective of individuals who are new to the subject or seeking to understand its purpose and relevance. The primary objective of an internal audit process is to ensure that the organization has taken all necessary measures to assess the effectiveness of its information security management system (ISMS) against the requirements outlined in ISO 27001 certification, as well as the organization's own specific requirements for the ISMS. In accordance with the Standard, internal audits must be carried out by auditors who are objective and impartial in their assessments.
By Wayne MaCcaw9 months ago in Education
5 Common Fallacies Associated with ISO 27001 Certification
Implementing an information security management system (ISMS) and obtaining ISO 27001 certification, the International Standard for Information Security Management, offers several compelling benefits. The primary reason is that customers, clients, and stakeholders often seek the reassurance provided by an ISO 27001 certificate.
By Wayne MaCcaw10 months ago in Education
How Secure is Zoom?
Numerous organizations have faced the challenge of swiftly adapting to the constantly evolving restrictions implemented worldwide to combat the spread of COVID-19. As a result, many employees had to transition to remote work, often without prior preparation. Unlike traditional business continuity plans, which typically involve relocating workers to alternative offices or locations, the current situation necessitated a different approach. Consequently, several organizations had not fully considered the implications of communication and collaboration when enabling their staff to effectively meet and work remotely.
By Wayne MaCcaw10 months ago in Education
10 Top Tips for Keeping Information Secure When Homeworking
In the aftermath of the COVID pandemic, remote work has become a prevalent and accepted practice. However, ensuring the security of remote work environments, including those with ISO 27001 certification, is crucial. In this blog, our objective is to present ten valuable tips that can assist you in maintaining the safety and security of your vital information assets while working from home.
By Wayne MaCcaw10 months ago in Education
How to improve your password management
One of the longstanding beliefs that forms the basis of many password policies is the notion that regular password changes are beneficial. The idea is that by frequently changing passwords, we can potentially prevent attackers from exploiting a discovered password. However, the unintended consequence of enforcing password changes is that organisations inadvertently raise the likelihood of users creating weak and poorly constructed passwords.
By Wayne MaCcaw10 months ago in Education