ISO 27001 Certification Process – Complete Requirements and Why Get Certified

There are certifications like CISA and CISM for individuals who want a professional recognition for their knowledge and skills of information security. But what about the entities if they need assurance about whether they have a robust information security management system in place or not. For organizations, there is ISO 27001 certification which they can … Read more

Audit Testing Procedures – 5 Types and Their Use Cases

As an information systems auditor, your work produces opinions and assertions on the status of different controls that the management has instituted. But the auditor doesn’t make arbitrary opinions. Any final view that auditor expresses in their report is backed by evidence and powered by audit testing that they performed to reach their conclusions.  Doing … Read more