SecMarkGotta love ~flow~ state when working.
Ended up spending last ~6 hours starting and finishing an authentication policy document for the entire organization.
#cybersecurity #infosec #iso27001 #iso27k #flowstate #auth #authentication
Martin Boller 
And again...
After a loooooong week of audit I once again have to conclude that ISO27k et al audits do not do anything for security but merely produce paper.
The time wasted in these audits could've been used to improve protection and increase speed of detection/response.
But hey a lot of people earned a living having meetings and writing hollow documents.
An exercise in pointlessness, keeping us from doing RealSecurity™
#ISO27k #Audit #NotStoppingHackers #CyberSecurity #Detection #Response #Protection
#RealSecurity™
JoNehlsen@luenemaeck Themensammlung nächster Stammtisch #TeamDatenschutz
Im Rennen bereits:
*Verantwortlichkeit #Blockchain
*#ISO27k und Art. 28/32 #DSGVO
*Videochat und #Berufsgeheimnisträger
*Datenschutz im #Assetdeal
--
Stammtisch extra @Ra_Koellner MSTeams Deepdive (begrenzte Plätze)
Im Rennen bereits:
*Verantwortlichkeit #Blockchain
*#ISO27k und Art. 28/32 #DSGVO
*Videochat und #Berufsgeheimnisträger
*Datenschutz im #Assetdeal
--
Stammtisch extra @Ra_Koellner MSTeams Deepdive (begrenzte Plätze)
Michael Hönnig#swDevTermOfTheDay #ISO27001 / #ISO27k is a family of standards providing best practice recommendations for an #ISMS (Information Security Management System) ensuring #Confidentiality, #Integrity and #Availability.