ISO 27001

ISO 27001 Certification is not a monolithic project

ISO 27001 Certification is not a monolithic project 1540 800 Paras Shah

One of the things we focus on when we work with our clients is that their certification isn’t just a bunch of paper.”

Jason Hellwege, our Principal Consultant in Risk Advisory, sheds some light on ISO 27001’s continuous improvement framework and the importance of taking incremental steps to achieve business ambitions. 

Jason, with his decades of experience in helping businesses perform in the best way they can, has a few tried and tested ideas.


Why should we manage technology risk?

We often get asked by business and organisation leaders why it’s important for them to create a formal structure to manage their technology...

What colour is security?

If you were to choose a colour for Cybersecurity, what colour will you choose? And, why? This trick I have learnt from my...

Resetting common beliefs on IT investment

Taking a structured approach to IT decisions One of the CIOs I have worked with challenged the common belief that finding money for...

People vs FUD

Often behind the technical jargon and FUD around Cybersecurity, we forget about the PEOPLE element in our conversations and thoughts. Be it OptusDataBreach...

ISO 27001 Certification is not a monolithic project

One of the things we focus on when we work with our clients is that their certification isn’t just a bunch of paper.”...

Benefits realisation as a driver for TechRisk Management

“Sell me Technology Risk Management,“ asked Lawrence Puang on our coffee catch up while celebrating TalentFirst.ai‘s achievement of ISO27001 certification. This short opening...