Post by Michael Amann

Hey network, happy to share that a few weeks ago I sat for the ISO/IEC 27001 Implementer exam by PECB — and I’m now certified. Preparing for it was a great opportunity to dive deeper into the nuts and bolts of an ISMS (Information Security Management System) and go beyond the high-level knowledge from #CISSP and #CISM. What really stood out to me again: Information Security only works when it’s grounded in reality. Copying controls from a list doesn’t help if they don’t address real risks. And even the best-defined control is useless without clear ownership. In the end, it all comes down to building something that actually works for the people who run it every day. Many thanks to Friedhelm Düsterhöft for another outstanding training, and to Gernot Groder and ALPLA Group for their continued support in fostering personal growth and development. #ISO27001 #ISMS #InformationSecurity #GRC