Articles tagged with "Supplier Management"
A practical guide to building audit-ready ISO/IEC 27001:2022 logging and monitoring evidence for NIS2, DORA and GDPR, with control mapping, policy clauses, incident workflows, supplier logging requirements and evidence pack guidance.
Learn how to build audit-ready PII protection controls by extending ISO/IEC 27001:2022 with ISO/IEC 27701:2025 and ISO/IEC 29151:2022, mapped to GDPR, NIS2, DORA, NIST-style assurance, and COBIT 2019 governance expectations.
A regulatory contact register is no longer administrative housekeeping. For NIS2, DORA, GDPR and ISO/IEC 27001:2022, it is operational evidence that your organization can notify the right authority, supervisor, supplier or executive before the clock runs out.
Turn cryptographic control exceptions from audit risk into proof of ISMS maturity. This flagship guide unites narrative and technical detail, with policy clauses, control mappings, and actionable evidence checklists.
A unified NIS2 Implementing Regulation 2024/2690 to ISO/IEC 27001:2022 control mapping for cloud, MSP, MSSP and data centre providers. Includes Clarysec policy clauses, audit evidence, DORA and GDPR alignment, and a practical implementation roadmap.
A flagship guide for CISOs, compliance managers and business leaders who need to turn NIS2 Article 21 technical measures into ISO 27001:2022 controls, policies, owners, records and defensible evidence.
A practical CISO guide for building a quantum-ready cryptography migration plan using ISO/IEC 27001:2022, ISO/IEC 27002:2022, NIST PQC standards, and Clarysec’s audit-ready toolkits.
Learn how to use the ISO 27001 Statement of Applicability as an audit-ready bridge between NIS2, DORA, GDPR, risk treatment, suppliers, incident response, and evidence.
Data Loss Prevention is no longer a standalone tool configuration. In 2026, CISOs need a policy-led, evidence-backed DLP program that connects data classification, secure transfer, logging, incident response, supplier governance and ISO/IEC 27001:2022 controls to GDPR Article 32, NIS2 and DORA.