Description

In this episode of InfoSec Insider, Wayne Armstrong, Senior Consultant at URM, provides his insights on the 34 technological controls in Annex A of ISO 27001 and how these can be implemented by organisations looking to conform or certify to the Standard.  Wayne leverages his 30+ years of experience in information security and risk management to discuss:

• What the technological controls in ISO 27001 are designed to achieve
• How you can go about selecting the most appropriate technological controls for your organisation
• How the guidance contained in ISO 27002, the supplementary standard to ISO 27001, can help your organisation meet the Standard’s requirements in relation to technological controls
• The constraints that may prevent your organisation from implementing certain controls, and how these can be overcome
• The importance of balancing security and operational effectiveness and efficiency.

Learn more about this topic:  https://www.urmconsulting.com/blog/implementing-technological-controls-in-iso-27001

If you enjoyed this episode of InfoSec Insider, you can leave us a rating and review here:  https://ratethispodcast.com/infosecinsider   

You can find more episodes of InfoSec Insider here:   https://urmconsulting.com/podcasts   

Brought to you by URM, the UK’s leading information and cyber security specialists.