Knowledge Hub
Practical guides and insights for information security and compliance.
ISO 27001 A.5.9:How to Build an Asset Inventory That Holds Up Under Audit
Most organisations list their tools. Auditors want documented ownership, classification, and lifecycle management — this guide shows you the difference.
ISO 27001 Clause 10.2:Nonconformity and Corrective Action
If you're building or running an ISMS, problems will surface. Clause 10.2 is the clause that determines whether your organisation learns from it or repeats it.
ISO 27001 Chapters 4-10:The first steps in setting-up your ISMS
ISO 27001 clauses 4–10 set out the mandatory structure for building, operating, and certifying an ISMS. This explains what each clause requires you to document, evidence, and maintain.
ISO 27001 Clause 4:How to Perform a Context Analysis
A practical guide to ISO 27001 Clause 4 — how to analyse your organisation's context, define your ISMS scope, identify interested parties, and produce the documentation that auditors expect.