Mistakes to Avoid When Implementing & Maintaining an ISO 27001 ISMS

In this episode of InfoSec Insider, Wayne Armstrong, Senior Consultant at URM, breaks down the common mistakes and challenges organisations come up against on both sides of their certification assessment, i.e., before the external assessment when the Information Security Management System (ISMS) is first being implemented, and after certification has been achieved and the ISMS is being maintained.  Wayne leverages his 30+ years of experience in information security and risk management to discuss:  

• The mistakes he frequently sees organisations make when implementing ISO 27001 and preparing to certify  

• The common mistakes organisations make in maintaining their ISMS and ISO 27001 certification  

• New common pitfalls he has seen regarding organisations’ implementation of the 2022 version of the Standard 

• Challenges and mistakes that organisations from particular industries and sectors should look out for.  

Learn more about this topic: https://www.urmconsulting.com/blog/common-pitfalls-identified-in-organisations-seeking-iso-27001-certification 

 If you enjoyed this episode of InfoSec Insider, you can leave us a rating and review here:   https://ratethispodcast.com/infosecinsider   

 You can find more episodes of InfoSec Insider here:   https://urmconsulting.com/podcasts   

Brought to you by URM, the UK’s leading information and cyber security specialists.