Subscribe
Sign in
Home
Chat
Courses
Exam Vouchers
About
I was on a Podcast for Auditors!
What Will the Auditor Look For?
READ THE LATEST
Most Popular
View all
Risk Management for Dummies
Nov 30, 2025
•
Aron Lange
16
1
How to get ISO 27000 for FREE (legally)
Jan 15
•
Aron Lange
9
The All-New C5:2025 Catalogue
Dec 11, 2025
•
Aron Lange
6
1
C5:2026 – The New Standard for Cloud Security is Here
Apr 14
•
Aron Lange
11
Recent posts
View all
Your ISMS Scope and Your Certification Scope Are Not the Same Thing
Here’s a question I get surprisingly often from people preparing for ISO 27001 certification: “Does our certificate have to cover our entire…
May 18
•
Aron Lange
8
C5:2026 – The New Standard for Cloud Security is Here
The German Federal Office for Information Security (BSI) has officially released the final version of the Cloud Computing Compliance Criteria Catalogue…
Apr 14
•
Aron Lange
11
Major, Minor, or Just an OFI? Test your audit IQ.
You are sitting in a conference room.
Mar 3
•
Aron Lange
7
1
The Hard Truth: Your Certificate ≠ Legal Compliance
Why ISO/IEC 27001 does not prove you are compliant with the law.
Feb 17
•
Aron Lange
3
2
15:35
Qualitative vs. Quantitative: Which Risk Analysis wins?
Plus: What a volcano in Hawaii teaches us about ISO 27001 and risk acceptance criteria.
Jan 26
•
Aron Lange
6
8:31
How to get ISO 27000 for FREE (legally)
Most people think you have to pay hundreds of dollars for any official ISO standard.
Jan 15
•
Aron Lange
9
See all
GRC Lab
Be the GRC Practitioner AI can't replace.
Subscribe
Resources
GRC Library
ISO 27001 Quickstart Guide
Training
Exam Vouchers
Get 10% off your official exam voucher.
ISO 27001 Lead Implementer
Corporate Training
Recommendations
View all 6
Resilient Cyber
Chris Hughes
Luiza's Newsletter
Luiza Jarovsky, PhD
Cybersecurity & Business
Ignacio Sbampato
Venture in Security
Ross Haleliuk
The Security Industry
Richard Stiennon
This site requires JavaScript to run correctly. Please
turn on JavaScript
or unblock scripts
