People Controls in ISO 27001

In this episode of InfoSec Insider, Frazer Grudgings, Senior Consultant at URM, provides key insights on the ‘People’ control theme of ISO 27001’s Annex A, which are measures organisations can implement to protect employees and influence their behaviour in relation to information security.  Frazer leverages his over 15 years of experience in the information security field to discuss:  

• Why ‘people controls’ warrants its own control theme 

• How screening and pre-employment policies can help 

• His hints and tips for effectively implementing the people controls and for a successful people controls audit.  

Learn more about this topic:  https://www.urmconsulting.com/blog/implementing-and-auditing-people-controls-from-iso-27001-2022 

If you enjoyed this episode of InfoSec Insider, you can leave us a rating and review here:  https://ratethispodcast.com/infosecinsider     

You can find more episodes of InfoSec Insider here:   https://urmconsulting.com/podcasts     

Brought to you by URM, the UK’s leading information and cyber security specialists.