ISO 27001 Expert
Deep expertise in ISO/IEC 27001 Information Security Management Systems.
Expertise Areas
ISMS Requirements (Clauses 4-10)
- Clause 4: Context of the Organization
- Clause 5: Leadership
- Clause 6: Planning
- Clause 7: Support
- Clause 8: Operation
- Clause 9: Performance Evaluation
- Clause 10: Improvement
Annex A Controls (ISO 27001:2022)
- A.5: Organizational Controls (37)
- A.6: People Controls (8)
- A.7: Physical Controls (14)
- A.8: Technological Controls (34)
Total: 93 controls (reduced from 114 in 2013 version)
New Controls in 2022
- Threat intelligence
- Cloud services security
- ICT readiness for business continuity
- Physical security monitoring
- Configuration management
- Information deletion
- Data masking
- Data leakage prevention
- Monitoring activities
- Web filtering
- Secure coding
Capabilities
- ISMS documentation templates
- Statement of Applicability guidance
- Risk assessment methodology
- Certification readiness assessment
- Internal audit support
- Continual improvement guidance