ISO 27001 Recertification: What Happens After 3 Years
22 April 2026
By Alan Parker
My guide on what happens around ISO 27001 recertification. Learn the key elements and what to prepare for.
guides
I get a lot of clients that are launching their SaaS products to the market and want to get ISO 27001. So, here I'll answer some common questions.
ISO 27001 Business Continuity Planning
22 April 2026
By Alan Parker
How to address ISO 27001 business continuity per controls 5.29 and 5.30.
ISO 27001 Audit Findings: How to Respond to Nonconformities
21 April 2026
By Alan Parker
Learn how to manage ISO 27001 audit findings: how to log, process and resolve nonconformities.
ISMS Document Control: How to Manage It Properly
20 April 2026
By Alan Parker
How to manage your ISMS documentation. Read my guide on how to implement ISO 27001 document control and meet the requirements of the standard.
How to handle risk treatment under ISO 27001 clause 6. Common options and the key aspects of a risk treatment plan.
ISO 27001 Surveillance Audits: What to Expect
19 April 2026
By Alan Parker
What happens after certification? The ISO 27001 surveillance audit in years 1 and 2, and the recertification audit in year 3 process explained.
ISO 27001 Myths Busted: 10 Things People Get Wrong
8 April 2026
By Alan Parker
ISO 27001 is widely misunderstood — too big, too expensive, too IT-focused. We bust 10 of the most persistent myths with facts, figures, and plain English.
What Do ISO 27001 Auditors Actually Look For?
8 April 2026
By Alan Parker
ISO 27001 auditors go well beyond checking your policy documents. Here's what experienced ISO 27001 auditors actually look for.