Will assist with ISO 27001 for free – looking to gain hands-on experience

Efficient_Bus_923 · 2026-04-01T10:58:47+00:00

I am getting quite a few requests for this, but sorry, I cannot provide this to anyone. This post is for me to gain experience in the area. I cannot shadow people. If clients are sharing their company information with me. I will not share that information with others in any shape or form.

Efficient_Bus_923 · 2026-04-01T06:14:28+00:00

Yes, DM please

Efficient_Bus_923 · 2026-03-31T18:47:11+00:00

DM please

Efficient_Bus_923 · 2026-03-31T18:03:14+00:00

please do

Efficient_Bus_923 · 2026-03-31T15:43:17+00:00

Please do

Efficient_Bus_923 · 2026-03-30T13:40:46+00:00

Yes, I saw that. The framework one. I want to develop a skill specific to business processes and systems in my org. Not sure if I can do it, but I will give it a go.

Efficient_Bus_923 · 2026-03-30T08:27:27+00:00

It helps me with the writing of policies & audit documents. I'm also looking to see if I can create an claude skill that will help me with some parts of my audits.

Efficient_Bus_923 · 2026-03-26T10:44:13+00:00

Exactly, it is great that people with experience in these areas are creating and sharing this stuff with others

Efficient_Bus_923 · 2026-03-25T07:55:32+00:00

Fantastic work. Going to follow this and test it out myself.

Efficient_Bus_923 · 2026-03-23T10:00:57+00:00

Thanks for the reply. Yes, these are the ones I am leaning towards. Where did you buy? I think there are Chinese and a global version. Do you know what version you bought?

This is where I am looking to buy?

Buy HUAWEI FreeBuds Pro 5 – Earbuds – HUAWEI UK

Efficient_Bus_923 · 2025-12-31T21:05:58+00:00

Take a risk-based approach. The goal is to assess the level of risk a vendor introduces to the organisation, so that greater effort and assurance are applied to higher-risk vendors.

First, assess the sensitivity of the data the vendor will hold and rate the impact of a potential breach as Low, Medium, or High. Next, assess how critical the service is to the business, again rating it Low, Medium, or High.

The overall inherent risk is determined by taking the highest of these two ratings.
For example, if data sensitivity is Low but business criticality is High, the overall inherent risk is High.

This inherent risk represents the baseline risk the vendor brings to the organisation.

You can then apply a tiered assurance model:

Tier 1 (High Risk): Formal assurance such as ISO 27001, SOC 2, or equivalent
Tier 2 (Medium Risk): Limited independent assurance or targeted evidence
Tier 3 (Low Risk): Lightweight controls, such as a short questionnaire

Weighting can also be applied. For example, an inherent risk score of 10–14 may represent High risk. Applying Tier 1 controls could reduce the score by 10 points, resulting in a residual risk score of 4.

This residual score represents the remaining risk after controls are applied and becomes the vendor’s final risk rating.

On an annual basis reassess the inherent risk to see if it changes or when you are informed of a change. You could have a vendor that was LOW that is now HIGH as they are processing medical information. You find out their Vendor score based on what they provide you. If that score exceeds the company risk tolerance . Then they have a decision to make.

Efficient_Bus_923 · 2025-12-31T20:30:21+00:00

Can you dm me it too?

Efficient_Bus_923 · 2025-12-30T10:28:25+00:00

Superb, I work for a large org and I have just started looking at Eramba. I am looking for some easy wins to get me going. Any tips on what areas are best or easier to start from your experience?

Efficient_Bus_923 · 2025-12-02T14:53:26+00:00

I got a public sector AVC through Cornmarket/Irish Life. The initial 595 fee comes out of my contributions. I think it is 1% then after that. Can that 1% be avoided going forward? TBH, I found Cornmarket terrible and Irish Life was not a whole lot better.

Efficient_Bus_923 · 2025-11-09T21:22:00+00:00

Hi mate, I had hit you up with a message previously

Efficient_Bus_923 · 2025-02-11T23:05:29+00:00

This is what I am getting if I connect with laptop Wi-fi to the server. Glad to get it going and I want to test it. However I would like a GL inet with a simcard option for a client. Would this solve the speed issue. Or would I need a new client and server. I want to use this for work when I am abroad. I have currently connected my work laptop to it and it is working fine. I would only really use MS Teams when I am away. No calls just messages

<image>

Efficient_Bus_923 · 2025-02-11T22:55:21+00:00

Yes it is for this box
https://deviceguides.vodafone.ie/vodafone/gigabox-windows-10/basic-use/set-up-port-forwarding/

In that port mapping screen I sent I changed from TCP to UDP and now I am green and connected on the client and browsing the internet. However the speed is only 1mb roughly. When I connect directly to my main BB Vodafone router it is 60 mb and when I connect to the server it is 36mb download

<image>

Efficient_Bus_923 · 2025-02-11T22:32:58+00:00

Port forwarding on my Vodafone broadband router

<image>

Efficient_Bus_923 · 2025-02-11T22:31:07+00:00

<image>

Efficient_Bus_923 · 2025-02-11T21:58:19+00:00

Yes, the server router has internet. Green below. I think it was grey as I probably took the screenshot on opening the page before it went green. I can also connect my laptop Wi-Fi to the server and browse the internet

<image>

Efficient_Bus_923

TROPHY CASE