White Paper | Getting ISO 27001 Certified Using Alyne

Ten detailed steps to becoming ISO 27001 certified using Alyne's Software as a Service.

The ISO/IEC 27001:2013 certification remains one of the most trusted and widely recognised standards for Information Security Management across regions and industry sectors. We therefore embarked on our journey of obtaining a certification in late 2017 and obtained certification in early 2018. As of March 2019 we have also successfully passed our first supervisory audit without any findings.

Naturally, we used our own internal instance of Alyne for building our Information Security Management System (ISMS). As people at Microsoft used to say: Eat your own dogfood. In this White Paper, Karl Viertel shares some of the learnings that were gained along the way and provide a detailed guide for any organisation looking to obtain an ISO/IEC 27001:2013 certification – and how to implement it using Alyne’s Software as a Service. Karl summarises the main steps to achieving the certification, explains how to implement the necessary actions within Alyne and shares the lessons learned for each step.

DOWNLOAD WHITE PAPER



Interested in our Webinar, too?

Pair your white paper with the on-demand webinar recording of Getting ISO 27001 Certified.

WATCH WEBINAR

PreviousNext
Bayley Benton

Related Posts

ESG Risk Management in Alyne

While no single framework has emerged as the industry standard for ESG risk management, there are different relevant classifications and approaches. Alyne's ESG Risk Framework is mapped to various expert sources, and combines powerful technology to enable you to assess, identify and analyse risks, and report on ESG programs. Access our White Paper to learn more about delivering cutting-edge ESG Governance, Risk and Compliance (GRC) capability across your enterprise.
Read more

Comprehensive Compliance with HIPAA Part 164

Although HIPAA has been in effect for over two decades, compliance with the law is still not a straightforward task. Many still lack the appropriate measures applicable to their organisation or are unsure of how to comply with all of the HIPAA Rules set out in Part 164. Alyne's technology can facilitate this process, and offers a comprehensive mapping of Part 164 of the HIPAA regulation, covering the provisions of the HIPAA Data Privacy, Security Controls and Breach Notification Rules.
Read more

Internal Control Frameworks and Meeting ICFR Requirements

In order to be compliant with SOX and to meet ICFR requirements, organisations are required to create controls that cover a large scope of IT and financial aspects, all tailored to their unique organisational structure. Leading organisations point to frameworks such as COBIT and COSO and even a combination of the two, to adopt in your quest for SOX and ICFR compliance. Alyne's Content Library goes beyond providing IT and Information Security related Controls and now contains extensive coverage of Financial Controls focused purely on the financial integrity of an enterprise. 
Read more