Quality and Security Must Converge in ICT: Lessons from the CrowdStrike Failure

A massive software outage in July 2024 exposed how fragile the global information and communications technology (ICT) ecosystem can be when quality and security are managed separately.

Europe’s Microelectronics Ecosystem Under Pressure, VDE Warns

Standardization and certification of tamper-proof microprocessors and microcontrollers are seen as vital for Europe’s industry,

Agentic AI Set to Reshape Quality Management

Agentic artificial intelligence (AI), made up of autonomous agents that act on goals and make decisions, is expected to reshape quality management in the future.

AI in Quality Fails Only When You Expect the Wrong Things

Large Language Models (LLMs), the type of artificial intelligence used in many tools today, are often praised for their ability to write, summarize, translate, and even code.

Preparing for the Future: How Digital Tools Simplify BRCGS Packaging Compliance

The new BRCGS Packaging Materials Issue 7 introduces major changes to how companies manage packaging safety, quality, and compliance.

Making ICT Ready for Disruptions with ISO 27031

ISO/IEC 27031:2025 is a valuable tool for organizations strengthening cybersecurity and ensuring their information and communication technology (ICT) systems can continue running during disruptions,

How Startups Can Meet Security Standards in a Few Clear Steps

Startups aiming to land big clients must achieve security compliance early—and Gabriel Labrada explains how to do it even with limited resources.

ISO 27002 Done Right Means Choosing Only the Measures That Fit

Sebastian Pietrek, Senior Lead Auditor at TÜV NORD CERT, examines the role of ISO 27002 in information security management system (ISMS) audits.

How to Implement ISO 27001 in 2025: New Guide Breaks Down Each Clause

A new post by Andrey Prozorov, founder of ISMS PRO and a Top 100 Cybersecurity Influencer on LinkedIn, features a practical implementation guide for ISO/IEC 27001 written by Gary Hinson of IsecT Ltd.

21 Things To Consider When Hiring an ISO 27001 Consultant

Choosing the right consultant is critical to a successful ISO 27001 implementation.

To Strengthen ISO 27001 Audits, Balance Physical Issues With IT Risks

Many ISO 27001 audit reports focus too much on what’s easy to see, and not enough on where the real danger lies.

The Vital Role of Information Security Management in the Digital Age

Information Security Management (ISM) is crucial for protecting data, preventing costly breaches, and maintaining consumer trust, argues a new blog post in the BSI's s Envision newsletter.

Writing Clear Control Descriptions for SOC 2 and ISO 27001 with Expert Precision

Chris Hall of BTRP, an ISO 27001 expert with over 20 years of experience helping organizations worldwide implement the standard, highlights the importance of precise and unambiguous control descriptions for frameworks like SOC 2 and ISO 27001.

Standardization Key to Ethical AI Use and Innovation

Lars Erik Jensen, head of digitalization at Standard Norway, highlights the crucial role of standardization in shaping AI’s future.

Time to Modernize Food Safety by Harnessing AI

In a recent opinion piece, Frank Yiannas, former Deputy Commissioner for Food Policy and Response at the U.S. Food and Drug Administration (FDA), advocates for an updated approach to food safety modernization.

Avoiding Common Pitfalls in ISO 27001 Implementation

ISO 27001, a globally recognized standard for implementing an Information Security Management System (ISMS), can significantly enhance data protection and build customer trust.

Information Security Controls That Should Be Added to ISO 27001

British ISO 27001 expert Chris Hall has proposed updates to Annex A of the standard for information security management, highlighting that several critical information security controls are missing or are insufficiently addressed.

Are ISO 27001 and NEN 7510 Enough to Meet NIS2 Supply Chain Demands?

Cees van der Wens examines whether ISO 27001:2022 and NEN 7510:2024 adequately meet the requirements of the NIS2 Directive, which aims to ensure a high level of cybersecurity across essential sectors.

Audits Show Consulting Firms Advising on IS often Neglect Their Own Risk Assessment

Steven Vogelaar, an ISO 27001 lead auditor and cybersecurity specialist, highlights a recurring issue in certification audits:

Auditing: Finding Faults or Issuing Opinions?

Audits are often seen as fault-finding, but a blog by Chinmay Kulkarni offers a different perspective.

Joint ISO and IEC Committee Leading the Charge for Responsible AI Standards

Wael William Diab and Mike Mullane are explaining in their blog post how the SC 42 committee is leading the global effort to develop standards for responsible AI adoption.

Pragmatic ISMS Implementation Guideline: A Personal Take

Implementing an Information Security Management System (ISMS) is no small thing, but quality specialist Potemkina offers valuable insights to make the journey to ISO 27001 certification smoother.

Certification NEN 7510:2024: against which part?

Pim Lagrand, Information security advisor, discusses the new version of NEN 7510:2024, Dutch standard for Information Security in healthcare.

Updating from ISO 27001:2013 to 2022

This is a summary of Tristan Roth's blog on Updating from ISO 27001:2013 to 2022?