Resources
Practical guides and audit insights on ISO 27001, ISO 42001, and ISO 9001 internal audits — drawn from real engagement work.
- April 29, 2026·8 min readISO 27001Privacy
Building a Defensible Data Deletion Request Process: An ISO 27001 Auditor's Guide
ISO 27001 A.5.34 plus GDPR Article 17 — what auditors look for, the gaps we flag in internal audits, and a working template for a defensible data deletion request process.
Read - March 25, 2026·9 min readISO 27001SDLC
Threat Modeling in the SDLC: What ISO 27001 A.8.25 and A.8.26 Actually Demand
Most SDLCs claim threat modeling. Most can't produce a single completed threat model on demand. What A.8.25 and A.8.26 require, the gaps we flag in audits, and a working template you can adopt in one sprint.
Read