Trends with ISO 27001, NIS2, and Supplier Security | Interview with René Matthiassen

https://is1-ssl.mzstatic.com/image/thumb/Podcasts221/v4/87/0f/75/870f7548-48c8-4c94-3aeb-121ad269486a/mza_11818424611668538939.jpg/600x600bb.jpg

Secure & Simple — Podcast for Consultants and vCISOs on Cybersecurity Governance and Compliance

Dejan Kosutic

21 episodes

8 hours ago

“Secure & Simple” demystifies governance and compliance challenges faced by consultants, as well as professionals acting as fractional CISOs in companies. The podcast is hosted by Dejan Kosutic, an expert in cybersecurity governance, ISO 27001, NIS2, and DORA. The episodes present topics in an easy-to-understand way and provide you with insight you won’t be able to find elsewhere. To provide comments, suggest topics for the next episodes, or express your interest in participating in the show, contact us at podcast@advisera.com. Learn more about ISO 27001, NIS2, and DORA at https://advisera.com.

All content for Secure & Simple — Podcast for Consultants and vCISOs on Cybersecurity Governance and Compliance is the property of Dejan Kosutic and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Management

Technology,

Business

Trends with ISO 27001, NIS2, and Supplier Security | Interview with René Matthiassen

Secure & Simple — Podcast for Consultants and vCISOs on Cybersecurity Governance and Compliance

47 minutes

7 months ago

Trends with ISO 27001, NIS2, and Supplier Security | Interview with René Matthiassen

In this episode of the Secure and Simple Podcast, host Dejan Kosutic is joined by Rene Matthiassen, a senior security consultant and partner at Front Door Security. With 30 years of experience in cybersecurity frameworks, Rene discusses the importance of tailored security frameworks, particularly ISO 27001, and how they benefit companies and suppliers under NIS2 scope. They delve into Rene’s journey from network engineering to consulting, the process behind developing security standards, and practical steps for managing cybersecurity among suppliers. The conversation also touches on the increasing importance of operational technology security frameworks like IEC 62443 and provides a forecast for the evolution of cybersecurity compliance in the digital decade.

Links from the episode:
- Conformio software to streamline and scale ISO 27001 implementation and maintenance for your clients: https://advisera.co/Conformio-software
- White label documentation toolkits for NIS2, DORA, ISO 27001, and other ISO standards to create all the required documents for your clients: https://advisera.co/page-all-toolkits
- Accredited Lead Auditor and Lead Implementer courses for various standards and frameworks to show your expertize to potential clients: https://advisera.co/Consultant-Courses
- Company Training Academy with numerous videos for NIS2, DORA, ISO 27001, and other frameworks to organize training and awareness programs for your client’s workforce: https://advisera.co/page-Company-Training-Account

(00:00) - Interview with René Matthiassen
(00:19) - Meet Our Guest: Rene Matthiassen
(02:35) - Transitioning from Technical to Governance
(04:38) - Developing ISO 27001 Standards
(06:15) - The Democratic Process of Standardization
(07:53) - Transposing NIS2 in Denmark
(11:10) - ISO 27001 and NIS2: A Symbiotic Relationship
(18:07) - Supply Chain Security and Compliance
(24:25) - Handling Supplier Disruptions
(26:56) - Creating Effective Security Contracts
(30:10) - Supplier's Perspective on Compliance
(36:40) - Navigating the Competitive Consulting Market
(39:39) - Operational Technology Security Standards
(42:26) - Future of Cybersecurity Compliance
(46:34) - Conclusion and Resources for Consultants