ISO International Management Systems Institute Podcast

September 20, 2022

In this episode, Howard and Jim discuss the path to become a Certified Lead Auditor.
Points Covered:

  • How to become a Certified Lead Auditor.
  • Who is the body that certifies lead auditors.
  • What are the courses that need to be taken.  
  • What experience does a prospective auditor need to have. 

August 20, 2022

In this episode, Howard and Jim continue their conversation about ISO 27001, Information Security Management System (ISMS) to Manage Cyber Attacks, and unpack what an effective ‘implementation Plan’ looks like.

Highlights

Jim talks about the creation of the ISO 27007, Information Security, Cyber Security, and Privacy Protection, released in 2020, which provide guidelines for information security management systems auditing.

Audit Takeaways

Are we getting the results we want?
Are we managing risks related to this activity?
Is there anything the auditee can think of that would help make their life better relative to the safety we want to have around information security?
Future Episode Idea

How to become a Certified Lead Auditor.
Who is the body that certifies lead auditors.
What are the courses that need to be taken.
What experience does a prospective auditor need to have.

View More View Less

August 1, 2022

In this episode, Howard and Jim continue their conversation about ISO 27001, Information Security Management System (ISMS) to Manage Cyber Attacks, and unpack what an effective ‘implementation Plan’ looks like.

Highlights

Jim referenced The PDSA Cycle (Plan-Do-Study-Act), developed by Dr. W. Edwards Deming. considered by many to be the master of continual improvement of quality. The PDSA is a systematic process for gaining valuable learning and knowledge for the continual improvement of a product, process, or service.

Link: https://deming.org/explore/pdsa/

View More View Less

July 19, 2022

In this episode, Howard and Jim continue their conversation about ISO 27001, Information Security Management System (ISMS) to Manage Cyber Attacks, and unpack the benefits of implementing an ISMS.

In the Media

Jim made the connection between ISO 27001 and an outage on Friday, July 8, at Rogers, one of Canada’s largest telecommunications companies, which caused significant internet, cable and cellphone disruptions, mostly in Ontario and Quebec, the country’s most populous provinces. Link to article: https://www.insurancejournal.com/news/international/2022/07/11/675306.htm

View More View Less

July 1, 2022

In this episode, Howard and Jim chat about How to Use ISO 27001 to Manage Cyber Attacks. Points that will be covered during this episode and then discussed further in subsequent episodes, include:

  • What does an ISMS look like?
  • What are the benefits of an ISMS?
  • What does an effective ‘implementation Plan’ look like? and 
  • What Specific Guidance is available?
An Information Security Management System is the framework that helps organizations prepare for a cyber-attack through a process of threat assessment, monitoring and continual improvement.

A well-designed system requires that you identify potential sources of a security breach, mitigate them and provide a strong ongoing defense system for your information. An attack will happen – it’s not a case of ‘if’ it’s a matter of ‘when’.

It’s virtually impossible to predict every risk to your information and mitigate it. It is possible, however, to create and manage a system that will give you a fighting chance.

The key is preparation, detecting vulnerabilities and creating a more resilient management system, in terms of interactions with so many layers of cyber connections. That’s where an information security management systems (ISMS) fits into your future.

Deeper awareness about what does an ISMS looks like?

The harmonized structure of ISO 27001 integrates perfectly with other Harmonized Standards
Annex A requirements, if properly implemented, help keep your information assets safe
Audits (Internal and External) help you find ways to improve the effectiveness of your system to keep information secure

View More View Less

June 1, 2022

The ISO Review Podcast is a production of the International Management System Institute.

The ISO Review Podcast shares the latest International Standards Development, and is your resource for getting the most out of your management systems.

The Podcast is hosted by Howard Fox, Business Coach, and Host of the Success InSsight Podcast. He is joined by Jim Moran, ISO Management System Professional, celebrating his 30th year delivering ISO support.

Twice-monthly, Jim & Howard will be sharing article highlights from the IMSI Newsletter. In this episode, Jim covers these highlights:

ISO Certification and Risk Management Practices
PFMEA: Learn How to Remove Error From a System With This 10 Step Guide
Bridging the Gap Between Management and Strategy
What is Kaizen? A Mindful System of Quality Improvement
Jim’s Recommended Readings
The Black Swan: The Impact of the Highly Improbable (2nd Ed.)
by Nassim Nicholas Taleb (Author) May 11, 2010.

View More View Less