Pyrzout :vm:<p>The compliance illusion: Why your company might be at risk despite passing audits <a href="https://www.helpnetsecurity.com/2025/02/26/compliance-security-illustion/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">helpnetsecurity.com/2025/02/26</span><span class="invisible">/compliance-security-illustion/</span></a> <a href="https://social.skynetcloud.site/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/compliance" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>compliance</span></a> <a href="https://social.skynetcloud.site/tags/regulation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>regulation</span></a> <a href="https://social.skynetcloud.site/tags/Don" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Don</span></a>'tmiss <a href="https://social.skynetcloud.site/tags/Hotstuff" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hotstuff</span></a> <a href="https://social.skynetcloud.site/tags/auditing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>auditing</span></a> <a href="https://social.skynetcloud.site/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> <a href="https://social.skynetcloud.site/tags/strategy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>strategy</span></a> <a href="https://social.skynetcloud.site/tags/Fortra" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Fortra</span></a> <a href="https://social.skynetcloud.site/tags/PCIDSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PCIDSS</span></a> <a href="https://social.skynetcloud.site/tags/howto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>howto</span></a> <a href="https://social.skynetcloud.site/tags/News" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>News</span></a> <a href="https://social.skynetcloud.site/tags/CISO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CISO</span></a> <a href="https://social.skynetcloud.site/tags/NIST" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NIST</span></a> <a href="https://social.skynetcloud.site/tags/tips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tips</span></a> <a href="https://social.skynetcloud.site/tags/CXO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CXO</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
fosstodon.org is one of the many independent Mastodon servers you can use to participate in the fediverse.
Fosstodon is an invite only Mastodon instance that is open to those who are interested in technology; particularly free & open source software.
If you wish to join, contact us for an invite.
Administered by:
Server stats:
10Kactive users
fosstodon.org: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.6
#iso27001
0 posts · 0 participants · 0 posts today
Quality Sistema Certifications<p>ISO Certification in Kuwait: </p><p>Get ISO Certification in Kuwait @ best price. We offer ISO 9001, ✅ ISO 45001, ISO 21001, ISO 14001 etc. Apply ISO Certification in Kuwait✅<br>Get Trusted ISO Certification in Kuwait-Call +916390019004<br>Location: India</p><p><a href="https://sistemacerts.org/iso-certification-in-kuwait/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">sistemacerts.org/iso-certifica</span><span class="invisible">tion-in-kuwait/</span></a></p><p><a href="https://mastodon.social/tags/iso" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iso</span></a> <a href="https://mastodon.social/tags/iso9001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iso9001</span></a> <a href="https://mastodon.social/tags/iso14001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iso14001</span></a> <a href="https://mastodon.social/tags/iso27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iso27001</span></a> <a href="https://mastodon.social/tags/certification" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>certification</span></a> <a href="https://mastodon.social/tags/trust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>trust</span></a> <a href="https://mastodon.social/tags/business" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>business</span></a> <a href="https://mastodon.social/tags/management" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>management</span></a> <a href="https://mastodon.social/tags/companies" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>companies</span></a> <a href="https://mastodon.social/tags/health" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>health</span></a> <a href="https://mastodon.social/tags/grow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>grow</span></a> </p><p><span class="h-card" translate="no"><a href="https://mastodon.social/@Sistemacertifications" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Sistemacertifications</span></a></span></p>
Cambionn<p>Currently going home from a 2 day internal <a href="https://mastodon.nl/tags/auditor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>auditor</span></a> <a href="https://mastodon.nl/tags/training" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>training</span></a> from <a href="https://mastodon.nl/tags/DNV" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DNV</span></a> I followed with my entire team, with focus on <a href="https://mastodon.nl/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a>. Despite the fact we've been doing them since forever, there still where some interesting points for all of us that we can use. There is always room for improvement!</p><p>Lunches where good too 🥪😏.</p><p><a href="https://mastodon.nl/tags/today" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>today</span></a> <a href="https://mastodon.nl/tags/audit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>audit</span></a> <a href="https://mastodon.nl/tags/auditing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>auditing</span></a> <a href="https://mastodon.nl/tags/ISMS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISMS</span></a> <a href="https://mastodon.nl/tags/datasecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>datasecurity</span></a></p>
Probesys :scop:<p>Pour bien commencer l'année 2025, nous avons une nouvelle à partager avec vous : Probesys est désormais certifié ISO 27001 🎉🔒.</p><p>Cette certification n'est pas seulement une étape importante pour notre coopérative, elle reflète notre engagement constant sur la qualité, la sécurité et la fiabilité de nos solutions ✅⚙️.</p><p>La certification ISO 27001 était l’étape principale vers notre objectif : la certification HDS 🎯📜.</p><p><a href="https://mastodon.scop.coop/tags/s%C3%A9curit%C3%A9" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sécurité</span></a> <a href="https://mastodon.scop.coop/tags/certification" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>certification</span></a> <a href="https://mastodon.scop.coop/tags/RGPD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RGPD</span></a> <a href="https://mastodon.scop.coop/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> <a href="https://mastodon.scop.coop/tags/h%C3%A9bergement" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hébergement</span></a></p>
Nine Internet Solutions AG<p>We are once again – or, to be more precise, remain – ISO 27001 certified! 🥳💯 What does that mean? 🤔 It means that the certification body of Swiss Safety Center AG certifies that we successfully apply an information security management system (ISMS) for the scope «development and operation of public and private cloud-based PaaS and SaaS solutions and associated consulting services» – in accordance with ISO/IEC 27001:2022. ✅ <a href="https://mastodon.social/tags/iso27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iso27001</span></a> <a href="https://mastodon.social/tags/certified" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>certified</span></a> <a href="https://mastodon.social/tags/data" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>data</span></a> <a href="https://mastodon.social/tags/secure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>secure</span></a> <a href="https://mastodon.social/tags/nine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>nine</span></a></p>
jesterchen42<p><span class="h-card" translate="no"><a href="https://social.skynetcloud.site/@jos1264" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>jos1264</span></a></span> Well... Icm more "classic", authenticity is a subset of integrity in my eyes. And non-repudiation is a thing following directly out of confidentiality (of the password) and integrity (of the systems)... ok, and to be fair: out of logging things, so...</p><p>yeah. This article might have shaken the foundation of my arguments while writing this toot. Thanks.</p><p><a href="https://social.tchncs.de/tags/iso" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iso</span></a> <a href="https://social.tchncs.de/tags/iso27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iso27001</span></a> <a href="https://social.tchncs.de/tags/isms" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>isms</span></a></p>
Erik van Straten<p>Agema: neem PGO voor EHDS-optout!</p><p><a href="https://www.security.nl/posting/871817/Minister+onderzoekt+opt-out+van+delen+medische+gegevens+via+PGO" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">security.nl/posting/871817/Min</span><span class="invisible">ister+onderzoekt+opt-out+van+delen+medische+gegevens+via+PGO</span></a></p><p>Eerder schreef ik in <a href="https://infosec.exchange/@ErikvanStraten/112502302144885238" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.exchange/@ErikvanStrat</span><span class="invisible">en/112502302144885238</span></a> dat PGO's op sterven na dood zijn (daarin beschrijf ik ook wat een PGO is, en het wensdenken bij het opstarten en realisatie daarvan).</p><p>HET ZIJN *UW* MEDISCHE GEGEVENS DIE AGEMA OP STRAAT LAAT BELANDEN!</p><p><a href="https://infosec.exchange/tags/EHDS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EHDS</span></a> <a href="https://infosec.exchange/tags/PGO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PGO</span></a> <a href="https://infosec.exchange/tags/Palantir" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Palantir</span></a> <a href="https://infosec.exchange/tags/EPD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EPD</span></a> <a href="https://infosec.exchange/tags/LSP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LSP</span></a> <a href="https://infosec.exchange/tags/DataLekken" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DataLekken</span></a> <a href="https://infosec.exchange/tags/WegPrivacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WegPrivacy</span></a> <a href="https://infosec.exchange/tags/PrivacyRISICOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PrivacyRISICOS</span></a> <a href="https://infosec.exchange/tags/ce" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ce</span></a> <a href="https://infosec.exchange/tags/ceKeurmerk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ceKeurmerk</span></a> <a href="https://infosec.exchange/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> <a href="https://infosec.exchange/tags/ISO27k" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27k</span></a> <a href="https://infosec.exchange/tags/NEN7510" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NEN7510</span></a> <a href="https://infosec.exchange/tags/Topicus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Topicus</span></a> <a href="https://infosec.exchange/tags/Spreekuur" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Spreekuur</span></a> <a href="https://infosec.exchange/tags/Leugens" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Leugens</span></a> <a href="https://infosec.exchange/tags/Agema" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Agema</span></a> <a href="https://infosec.exchange/tags/PVV" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PVV</span></a></p>
alturiak<p>Hi! 👋<br>Ich bin nicht wirklich <a href="https://digitalcourage.social/tags/neuhier" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>neuhier</span></a>, aber gerade wieder von einer Sharkey-Instanz zurückgezogen und hatte bisher ohnehin kein neuhier-Posting.<br>Im echten Leben ursprünglich aus <a href="https://digitalcourage.social/tags/Karlsruhe" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Karlsruhe</span></a> und inzwischen mit der Lieblingsmenschin wohnhaft in <a href="https://digitalcourage.social/tags/Norderstedt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Norderstedt</span></a> fühle ich mich eigentlich als <a href="https://digitalcourage.social/tags/Hamburg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hamburg</span></a>|er. Das Futter für meine Mischlingshündin 🐶 (folgt dem <a href="https://digitalcourage.social/tags/Hundenasenmontag" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hundenasenmontag</span></a>!) verdiene ich mit <a href="https://digitalcourage.social/tags/IT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IT</span></a>-Security, <a href="https://digitalcourage.social/tags/Python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Python</span></a> und der <a href="https://digitalcourage.social/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a>. Privat verbringe ich die Nächte gerne auf den diversen norddeutschen <a href="https://digitalcourage.social/tags/Grufti" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Grufti</span></a>-Tanzflächen oder auf den einschlägigen Festivals 🦇. Musikalisch darf es dabei gerne schwarz, elektronisch und schnell sein. Auch sonst mag ich viel Schwarzes (fritz-kola, Klamotten, Humor, ...), aber keinen Kaffee.</p><p>Die eigentlich nicht vorhandene Restzeit verbringe ich gerne mit <a href="https://digitalcourage.social/tags/Serien" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Serien</span></a>, <a href="https://digitalcourage.social/tags/B%C3%BCcher" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Bücher</span></a>|n 📚 (bevorzugt <a href="https://digitalcourage.social/tags/Sci" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Sci</span></a>-Fi und <a href="https://digitalcourage.social/tags/Cyberpunk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cyberpunk</span></a>), <a href="https://digitalcourage.social/tags/Brettspiele" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Brettspiele</span></a>|n, <a href="https://digitalcourage.social/tags/PC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PC</span></a>-Spiele|n oder <a href="https://digitalcourage.social/tags/PenAndPaper" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenAndPaper</span></a>. Ansonsten kann ich mich auch für <a href="https://digitalcourage.social/tags/Elektromobilit%C3%A4t" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Elektromobilität</span></a>, <a href="https://digitalcourage.social/tags/ErneuerbareEnergien" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ErneuerbareEnergien</span></a> und überhaupt ganz viel technischen Spielkram begeistern.</p>
unicis_tech<p>Coming feature highlight! ⭐<br>Cybersecurity Risk Management, using the ISO/EIC 27001 ISMS Information Risk Register template. 🔒<br>Sign up to our newsletter to be the first to know when we launch Early Access: <a href="https://www.unicis.tech/newsletter/?mtm_campaign=earlyaccess" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">unicis.tech/newsletter/?mtm_ca</span><span class="invisible">mpaign=earlyaccess</span></a><br><a href="https://mastodon.xyz/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://mastodon.xyz/tags/RiskManagement" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RiskManagement</span></a> <a href="https://mastodon.xyz/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> <a href="https://mastodon.xyz/tags/SMEs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SMEs</span></a></p>
data://disrupted®️<p>Wir sprachen auf der it-sa in Nürnberg mit Bernd Erk, dem Geschäftsführer von NETWAYS, über deren <a href="https://mastodontech.de/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a>-Zertifizierung und die neuen Vorgaben aus <a href="https://mastodontech.de/tags/NIS2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NIS2</span></a>. Im Interview geht es um Vorgaben, Betroffene und welche Rolle Open Source bei NIS-2 spielt. Wenn du wissen willst, ob dein Unternehmen von den NIS-2-Vorgaben betroffen ist, mach den Test beim BSI (Link in den Shownotes).</p><p><a href="https://data-explore.letscast.fm/episode/dxplr0027-nis-2-die-grosse-unbekannte" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">data-explore.letscast.fm/episo</span><span class="invisible">de/dxplr0027-nis-2-die-grosse-unbekannte</span></a></p>
Dr. Robin Farrell :rick: :donor:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@johntimaeus" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>johntimaeus</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@SecureOwl" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>SecureOwl</span></a></span> CISO right now is poisoned chalice. Every company wants one but they'll give you no budget to address technical debt. Worse - They're put you under the CTO or CIO who you are supposed to police, and then you have compliance and legal. Been there done that. <a href="https://infosec.exchange/tags/GDPR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GDPR</span></a> <a href="https://infosec.exchange/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> <a href="https://infosec.exchange/tags/NIST800" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NIST800</span></a> <a href="https://infosec.exchange/tags/CIS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CIS</span></a> <a href="https://infosec.exchange/tags/NIS2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NIS2</span></a><br>They will get owned and call delloitte.</p>
Erik van Straten<p><span class="h-card" translate="no"><a href="https://hachyderm.io/@evacide" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>evacide</span></a></span> wrote (in <a href="https://infosec.exchange/@evacide@hachyderm.io/113451271787551269" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.exchange/@evacide@hach</span><span class="invisible">yderm.io/113451271787551269</span></a>):<br>❞<br>if you are trying to tighten up your digital security, please start with threat modeling: <a href="https://ssd.eff.org/module/your-security-plan" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ssd.eff.org/module/your-securi</span><span class="invisible">ty-plan</span></a><br>❝</p><p>Although her intentions are undoubtly good, this is not going to work for most people.</p><p>In fact, it may make them more vulnerable. For example, having a list with your most valuable assets adds a new risk: if that list falls into the wrong hands, attackers will know exactly what to look for (and where, if that's in the list).</p><p>The EFF page sounds like ISO 27001. In most cases such systems did and do not prevent companies from getting pwned.</p><p>Such systems are too generic; for example, every system admin knows that "turn off all unnecessary services" is pure theory, because nobody tells you which ones are unneccessary (why were they running in the first place). And you don't know which update will turn them on again, or not but make them necessary.</p><p>Even the title is misleading: "Surveillance Self-Defense" and a bit down the page: "Does my neighborhood have a history of burglaries? How trustworthy are my roommates/guests?"</p><p>What do burglars have to do with surveillance? How HUGE is your problem if your roommates/guests are NOT trustworthy? (Does an alternative of "get rid of them or move yourself" even exist?)</p><p>There are way too many question marks in said EFF page. For most people it is extremely hard and time consuming to think of ALL potential vulnerable "access points" that may exist, estimate the chance of an attack taking place plus the damage that may result, figuring out the best affordable mitigating measures, implementing them and keeping everything up to date.</p><p>IMO we must make things a lot simpler; said EFF page just scares people away.</p><p><a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.exchange/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> <a href="https://infosec.exchange/tags/EFF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EFF</span></a> <a href="https://infosec.exchange/tags/PersonalSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PersonalSecurity</span></a> <a href="https://infosec.exchange/tags/Awareness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Awareness</span></a> <a href="https://infosec.exchange/tags/SecurityAwareness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecurityAwareness</span></a></p>
Martin Boller 🇺🇦 :tux: :freebsd: :windows: :mastodon:<p>I saw a startling sight today, an <a href="https://infosec.exchange/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> auditor with his hands in his own pockets.<br>(Inspired by Mark Twain)</p>
Jan Bretschneider<p><span class="h-card" translate="no"><a href="https://mastodon.social/@j2bryson" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>j2bryson</span></a></span> <br>This toot should be part of every IT-sec policy, if not standard.<br><a href="https://colearn.social/tags/iso27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iso27001</span></a> <a href="https://colearn.social/tags/tisax" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tisax</span></a></p>
data://disrupted®️<p>Keine Angst vor <a href="https://mastodontech.de/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a>: Auf der it-sa – Home of IT Security sprach Kerstin mit Bernd Erk, dem Co-Founder und Geschäftsführer von NETWAYS über den ISO-Standard 27001, IT-Grundschutz, <a href="https://mastodontech.de/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>opensource</span></a> und die Erfahrungen seiner Organisation bei der Umsetzung. </p><p>PS: Wenn ihr persönlich mit Bernd sprechen wollt und Fragen an ihn habt, nutzt die Chance auf der OSMC vom 19.-21.11. in Nürnberg. Ein paar Tickets gibt es noch!</p><p><a href="https://data-explore.letscast.fm/episode/dxplr0025-keine-angst-vor-iso-27001" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">data-explore.letscast.fm/episo</span><span class="invisible">de/dxplr0025-keine-angst-vor-iso-27001</span></a></p>
A2 Engineering Services<p>May I ask for some advice please.<br>I run a very small business, there are only 3 or 4 of us. We don't have things like job descriptions apart from the very generic "look after our valued customers".<br>I keep being asked "Are you IS027001 certified, if not, give details of how you ensure your services conform to the relevant standards?"<br>We don't have the bandwidth for the bureaucratic overhead of 27001, but we are good at what we do, so how should I attempt to answer that question?<br><a href="https://mstdn.social/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> <a href="https://mstdn.social/tags/ICT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICT</span></a></p>
Pyrzout :vm:<p>CYBERSECURITY INCIDENT RESPONSE PLAN 1 <a href="https://ciso2ciso.com/cybersecurity-incident-response-plan-1/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/cybersecurity-in</span><span class="invisible">cident-response-plan-1/</span></a> <a href="https://social.skynetcloud.site/tags/0CTCISOStrategicsCybersecurityFrameworks" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>0CTCISOStrategicsCybersecurityFrameworks</span></a> <a href="https://social.skynetcloud.site/tags/CISO2CISONotepadSeries" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CISO2CISONotepadSeries</span></a> <a href="https://social.skynetcloud.site/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> <a href="https://social.skynetcloud.site/tags/GDPR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GDPR</span></a> <a href="https://social.skynetcloud.site/tags/NIST" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NIST</span></a></p>
Cool Waters Cyber<p>I’d recommend Cool Waters to anyone looking for a partner to help them achieve ISO 27001 certification or provide an outsource managed cyber security team. Mark Fraser, CEO, Zappit</p><p>Read more 👉 <a href="https://lttr.ai/AWwK8" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">lttr.ai/AWwK8</span><span class="invisible"></span></a></p><p><a href="https://mastodon.social/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> <a href="https://mastodon.social/tags/CertificationIso27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CertificationIso27001</span></a> <a href="https://mastodon.social/tags/CaseStudy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CaseStudy</span></a> <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a></p>
Anton<p>Netter Nebeneffekt: die gesamte Zertifizierung erfolgte Remote. Das Team sitzt (in DE) verstreut - so dass auch viele Kapitel der <a href="https://mastodon.social/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> schlichtweg ausgeschlossen werden konnten.<br>Am Ende blieb für die physikalische Sicherheit nur noch der Perimeter der Noris Network, wo unsere Hardware in den Racks steht - und die Policy für den sicheren Remote-Arbeitsplatz.<br>Wer braucht schon Präsenzpflicht...</p>
Anton<p>Und damit ist es offiziell: Wir, die AD IT Systems, haben uns nach <a href="https://mastodon.social/tags/ISO27001" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISO27001</span></a> zertifizieren lassen - der Betrieb unserer OpenStack-Infrastruktur ist somit gesichert.<br><a href="https://www.aditsystems.de/de/company/unser-qualitaetsanspruch" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">aditsystems.de/de/company/unse</span><span class="invisible">r-qualitaetsanspruch</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
LoginDrag & drop to upload