GRC Lab | Aron Lange | Substack

The Hard Truth: Your Certificate ≠ Legal Compliance

Why ISO/IEC 27001 does not prove you are compliant with the law.

READ THE LATEST

Most Popular

How to Solve the GRC Puzzle: A Roadmap Through the Noise

Nov 30, 2025 • Aron Lange

The All-New C5:2025 Catalogue

Dec 11, 2025 • Aron Lange

How to get ISO 27000 for FREE (legally)

Jan 15 • Aron Lange

A Smarter Way to Audit Personnel Security

Nov 21, 2025 • Aron Lange

Recent posts

Qualitative vs. Quantitative: Which Risk Analysis wins?

Plus: What a volcano in Hawaii teaches us about ISO 27001 and risk acceptance criteria.

Jan 26 • Aron Lange

15:35

How to get ISO 27000 for FREE (legally)

Most people think you have to pay hundreds of dollars for any official ISO standard.

Jan 15 • Aron Lange

8:31

The All-New C5:2025 Catalogue

A Practical Guide to the New Cloud Security Standard

Dec 11, 2025 • Aron Lange

How to Solve the GRC Puzzle: A Roadmap Through the Noise

I remember sitting in security meetings at the very start of my career, feeling completely lost.

Nov 30, 2025 • Aron Lange

A Smarter Way to Audit Personnel Security

Why you should audit the employee lifecycle and pull in some IT controls as well.

Nov 21, 2025 • Aron Lange

It’s Just Paperwork, Right?

How to make sense of policies, standards, and procedures.

Nov 14, 2025 • Aron Lange

GRC Lab

GRC Lab

Be the GRC Practitioner AI can't replace.

Recommendations

Luiza's Newsletter

Luiza Jarovsky, PhD

Deploy Securely

Walter Haydock

Venture in Security

Ross Haleliuk

Resilient Cyber

Chris Hughes

The Security Industry

Richard Stiennon

GRC Lab

Be the GRC Practitioner AI can't replace.

About Archive Recommendations Sitemap

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts