Articles tagged with "Data Protection"
A practical CISO guide to turning NIST SP 800-63-4 password, MFA and passkey expectations into ISO/IEC 27001:2022, NIS2, DORA and GDPR evidence using Clarysec policies, Zenith Blueprint and Zenith Controls.
A practical CISO guide to governing cloud regions, backups, logs, support access and subcontractors through ISO/IEC 27001:2022, GDPR, NIS2 and DORA.
Email authentication is no longer a DNS-only task. Learn how to turn DMARC, SPF, DKIM, MTA-STS and TLS-RPT into governed, audit-ready evidence for ISO/IEC 27001:2022, NIS2, DORA, GDPR and NIST CSF 2.0.
ENISA EUVD will change how EU organizations consume vulnerability intelligence, manage CVD, coordinate suppliers, and evidence NIS2, DORA, GDPR and CRA reporting decisions. This guide shows how ISO/IEC 27001:2022, Clarysec policies, Zenith Blueprint and Zenith Controls turn vulnerability alerts into an auditable operating model.
SBOMs are now core evidence for software supply chain assurance. This guide shows how to operationalize SBOMs through ISO 27001:2022, NIS2, DORA, GDPR, NIST CSF 2.0, COBIT 2019 and Clarysec policies.
A modern Business Impact Analysis connects critical services, ICT assets, suppliers, recovery objectives, continuity testing, and management approval into one defensible evidence chain for ISO/IEC 27001:2022, NIS2, DORA, GDPR, NIST CSF 2.0, and COBIT 2019.
A practical CISO playbook for building audit-ready, role-based security awareness training evidence across ISO/IEC 27001:2022, NIS2, DORA, GDPR and NIST.
A practical SME guide to using the NIST CSF 2.0 Govern Function as the governance layer for ISO 27001:2022, NIS2, DORA, GDPR, supplier oversight, and audit-ready evidence.
A practical CISO guide to coordinated vulnerability disclosure under NIS2, DORA, GDPR, and ISO/IEC 27001:2022, with policy wording, intake workflow, supplier escalation, audit evidence, and control mapping.