Organizational context
ISO 27001 Information Security – Clause 4.4 Information Security Management System
ISO 27001 Information Security – Clause 4.4 Information Security Management System ISO 27001 Clause 4.4 Information Security Management System 4 May 2022 – ISO 27001 Information Security in plain English – Blog post #4. This post discusses clause 4.4 in ISO 27001 which requires organizations to establish an ISMS (Information Security Management System), then to…
Read MoreISO 27001 Information Security – Clause 4.3 Scope
ISO 27001 Information Security – Clause 4.3 The scope of the ISMS 28 April 2022 – ISO 27001 Information Security in plain English – Blog post #3. Clause 4.3 Scope. An essential step when planning an ISMS or indeed, any management system is to establish its scope or boundaries. What elements of the organization are…
Read MoreISO 27001 Information Security – Clause 4.2 Interested parties
ISO 27001 Information Security – Clause 4.2 Understanding the needs and expectations of interested parties 18 April 2022 – ISO 27001 Information Security in plain English – Blog post #2. Clause 4.2 has just 2 apparently simple requirements. In plain English, they are: Determine who is interested in your ISMS (Information Security Management System), and…
Read MoreISO 27001 Information Security – Clause 4.1 Context of the organization
ISO 27001 Information Security – Clause 4.1 Understanding the organization and its context 11 April 2022 – ISO 27001 Information Security in plain English – Blog post #1. In order to plan a management system, we need to need to first understand the internal and external factors that may affect the ability to achieve objectives.…
Read MoreHow to get more value from your interested parties table
How to get more value from your interested parties table 3 June 2021 When ISO 9001 was updated in 2015, it introduced requirements on the subject of interested parties. While it’s quite simple to address the basic requirements, a little more thought can help to achieve greater benefits all round. Interested parties are those that…
Read MoreSmoothing the transition to ISO 45001
Smoothing the transition to ISO 45001 15 March 2021 | Guidance and reference source for making the transition to ISO 45001. ISO 45001 is an international standard that specifies requirements for an OHSMS (Occupational Health & Safety Management System). It aims to enable organizations to better manage their OHS risks and improve their OHS performance.…
Read MoreNew Quality Business magazine out now
New Quality Business magazine out now – 2020 Issue 4 3 December 2020 Issue 4 of Quality Business Magazine for 2020 has just been released. This is a special bumper issue to celebrate World Quality Day, with lots of interesting content around the theme of the day “Creating Customer Value”. The magazine includes a series…
Read MoreBusiness continuity and ISO 22301
Business continuity and the ISO 22301 standard 19 May 2020 Business continuity management is dealing with the impact of disruptions in order to continue providing services or products. That is, at least to acceptable levels and time frames. A BCMS (or business continuity management system) will integrate arrangements for prevention and recovery to build…
Read MoreThe ISO 45001 OHS standard: A Quick Intro
ISO 45001 OHS Standard: A Quick Intro 3 March 2020 The ISO 45001 OHS Standard specifies requirements for an OHSMS (Occupational Health & Safety Management System). It was released in 2018 and is gradually superseding many earlier national standards. Many observers consider ISO 45001 to be the most significant OHS standard ever. Why? Well, a…
Read MoreIntroducing the new ISO 45001 OHS standard
Introducing the new ISO 45001 OHS standard This article by our sister organization Qudos Certification provides a basic introduction to the new standard. ISO 45001 is a new international standard that specifies requirements for an OHSMS (Occupational Health & Safety Management System). A management system based on its requirements can help your organizations to better…
Read More