What’s most important when building an ISMS or Management System?

I’d like to share a few thoughts about what’s important when building a Management System in general, and an Information Security Management System in particular. Please consider this being tips and ideas from me to you. This post relates to ISO 27001:2013 and the standards following the new model and structure. More then one standard?… Continue Reading


ISO audit done

Finally through with the ISO audits (ISO 9001:2015, ISO 14001:2015, ISO 27001:2013 and OHSAS 18001). Despite a few minor nonconformities we’ll be recommended continued certification. Well done to us then!


Time for ISO audit

It’s time for the annual ISO audit. We manage a combined management system where Information Security is in many parts integrated within the business main and supporting processes. This is our third annual ISO audit and I’m really looking forward to it. Going through these audits is a great opportunity to discuss further development, getting… Continue Reading