Why become certified to ISO 27001?
Do you ever get tired of those statements from companies after a data breach telling us: “we take your security seriously”? In a year of high-profile ransomware incidents and data breaches, security is near the top of the agenda as never before. Boards and managers are asking how they can protect their organisations better against […]
BH Consulting prepares HR software company Our Tandem for successful ISO 27001 certification
Company background Founded and led by former HR professionals, Our Tandem provides a software as a service (SaaS) continuous performance management and employee engagement platform that helps organisations around the world to accelerate the performance of their employees, boost their levels of engagement and enables leaders to become better coaches. The company has already won […]
How ISO 27001 & ISO 27701 can help in managing GDPR compliance risk post Brexit
As we know, the UK left the European Union on 31 January and has now entered an 11-month transition period. In the meantime, the UK effectively remains in the EU’s customs union and single market and continues to obey EU rules. One of the many areas this affects is data protection. EU-based data controllers like […]
Rules and regulations like EU Cybersecurity Act are a sign of a maturing industry
The older and more mature an industry gets, the more standards it needs to align with. For example, financial services has been around for a long time and is heavily regulated. Cybersecurity is quite young in comparison, but it’s going in the same direction. This is a natural progression, because of the impact that the industry has […]
CISO as a service helps to tackle ongoing need for security
As cybersecurity gets more attention in businesses and organisations, the need for a Chief Information Security Officer (CISO) has come into focus. In the past, many organisations tackled security piecemeal, as a series of point-in-time exercises, but some now realise they need a dedicated resource to manage their security on a consistent, ongoing basis. Many […]
Cybersecurity and data protection in 2019: the BH Consulting year in review (part 2)
Security is a busy field, and 2019 was no exception. Following last week’s blog looking back at the first six months of the year, here’s the second part covering cybersecurity, data protection and privacy stories that emerged between July and December. July Summertime and the living wasn’t easy if your company was called BA or […]
We are hiring – Data Protection Consultant
Due to market growth and continued expansion, BH Consulting is looking to augment its growing DPO-as-a-service team by hiring a new Data Protection Consultant. The candidate is passionate about data protection and is keen to demonstrate this. The candidate has at least 5 years experience in data protection or IT data project management, and is likely to […]
A recipe you can trust: baking real consent into cookie notices
Anyone who has used the internet since May 2018 must have encountered a growing number of cookie consent notices whenever they browse a website. But are these notices telling us as individuals everything that’s happening with our data? And what should organisations do to make their actions more transparent? The answer to the first question, […]
ISO 27001 extends privacy controls – what this means in practice
The International Organisation for Standardization (ISO) recently published an extension to ISO/IEC 27001 and 27002 for privacy information management. In this post, we’re going to take a closer look at this development. As regular readers of this blog will know, we at BH Consulting are big supporters of the ISO 27001 information security standard (note: […]
Business benefits for ISO 27001 certification, and five steps to making it work
Whether you want to reassure a board – or yourself – that your security programme is operating optimally, the ISO 27001 Information Security Standard gives you that confidence. Here are some business-focused benefits to becoming certified, and some tips for making that process run smoothly and successfully. Choosing to get certified First, let’s address a […]