Trends in ISO Standards: Certification Body Perspective

https://is1-ssl.mzstatic.com/image/thumb/Podcasts221/v4/87/0f/75/870f7548-48c8-4c94-3aeb-121ad269486a/mza_11818424611668538939.jpg/600x600bb.jpg

Secure & Simple — Podcast for Consultants and vCISOs on Cybersecurity Governance and Compliance

Dejan Kosutic

21 episodes

6 days ago

“Secure & Simple” demystifies governance and compliance challenges faced by consultants, as well as professionals acting as fractional CISOs in companies. The podcast is hosted by Dejan Kosutic, an expert in cybersecurity governance, ISO 27001, NIS2, and DORA. The episodes present topics in an easy-to-understand way and provide you with insight you won’t be able to find elsewhere. To provide comments, suggest topics for the next episodes, or express your interest in participating in the show, contact us at podcast@advisera.com. Learn more about ISO 27001, NIS2, and DORA at https://advisera.com.

All content for Secure & Simple — Podcast for Consultants and vCISOs on Cybersecurity Governance and Compliance is the property of Dejan Kosutic and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Management

Technology,

Business

Trends in ISO Standards: Certification Body Perspective | Interview with Tom Wheat

Secure & Simple — Podcast for Consultants and vCISOs on Cybersecurity Governance and Compliance

46 minutes

7 months ago

Trends in ISO Standards: Certification Body Perspective | Interview with Tom Wheat

In this insightful episode of the Secure and Simple Podcast, host Dejan Kosutic discusses the evolving landscape of standards with Tom Wheat, UK Country Manager at PJR. They delve into the importance of ISO 27001 as the benchmark for global information security, the internal processes within certification bodies, and the value certification bodies can add beyond just issuing certificates. The discussion also covers the role of consultants, the competitive certification market, the impacts of AI, and key recommendations for consultants preparing clients for certification. Tune in for valuable insights on ensuring continuous improvement, compliance, and the future of cybersecurity certification.

Links from the episode:
- Conformio software to streamline and scale ISO 27001 implementation and maintenance for your clients: https://advisera.co/Conformio-software
- White label documentation toolkits for NIS2, DORA, ISO 27001, and other ISO standards to create all the required documents for your clients: https://advisera.co/page-all-toolkits
- Accredited Lead Auditor and Lead Implementer courses for various standards and frameworks to show your expertize to potential clients: https://advisera.co/Consultant-Courses
- Company Training Academy with numerous videos for NIS2, DORA, ISO 27001, and other frameworks to organize training and awareness programs for your client’s workforce: https://advisera.co/page-Company-Training-Account

(00:00) - Interview with Tom Wheat
(02:10) - Tom's Journey: From Consultant to Certification Manager
(05:36) - The Importance of ISO 27001
(07:51) - Trends in Certification and Compliance
(13:52) - Behind the Scenes of Certification Bodies
(22:18) - The Value of Certification Bodies
(24:55) - Auditors and Best Practices
(28:07) - Consultants in the Certification Process
(30:14) - Handling Non-Conformities and Appeals
(32:41) - Competing in the Certification Market
(36:42) - The Future of Certification Bodies
(39:13) - AI and the Future of Compliance
(43:13) - Top Recommendations for Consultants
(45:22) - Conclusion and Resources