Exciting news: British Assessment Bureau will rebrand as Amtivo in Autumn 2026! Find out more here >>

ISO 27001 Resources

Cyber security 27001

Quantifying ISO 27001 Return On Investment (ROI) in Multinational Enterprises

Make the ROI case for ISO 27001: governable security outcomes, consistent evidence across subsidiaries, less procurement drag, and risk predictability.
Learn More
GDPR Guide

GDPR Compliance:
A Practical Guide for UK Businesses

GDPR applies to any organisation processing personal data belonging to people in the UK or EU.
Learn More
ISO 27001 News and Updates

ISO 27001 Standard – Most Recent Updates and Revisions

Stay informed with our ISO 27001 updates page. Being informed could help protect your organisation and clients.
Learn More
Busy Working office

Cyber Essentials vs ISO 27001 – What Are The Differences?

Cyber Essentials is a UK Government-backed scheme managed and maintained by the National Cyber Security Centre (NCSC).
Learn More
smart-crane-loanding-cargo-container-to-container-2024-12-08-00-21-37-utc.jpg

How ISO Certification Can Help with External Business Factors

Combat external factors affecting business with ISO certification. Learn how ISO standards and systems can help keep an organisation resilient and
Learn More
A parliamentary committee is worried about future ransomware. Is there a message for Britain’s SMEs

Ransomware Concerns for SMEs Raised in Parliament

Ransomware attacks have become increasingly common in recent years, and they can have a devastating impact on businesses, especially SMEs.
Learn More
Supply Chain Cyber Essentials 27001

Strengthening Supply Chain Cyber Security with Cyber Essentials Plus and ISO 27001

Discover how Cyber Essentials Plus and ISO 27001 help UK businesses secure supply chains and strengthen cyber resilience.
Learn More
ISO-27001-Key-Requirements

ISO 27001 Requirements – A Comprehensive Guide

An explainer guide to the requirements for ISO 27001 certification in information security management.
Learn More
UK GDPR

UK GDPR Changes: What the New Rules Mean for Businesses in 2025/2026

Learn how the DUAA updates UK GDPR and PECR, introducing new rules on cookies, automation, consent, and ISO 27001 compliance.
Learn More
Cyber Security Month - UK

Cyber Security Month: Essential Compliance Checklist for UK Businesses

Cyber Security Month highlights how small steps boost protection. Check our Essential Compliance Checklist to spot gaps.
Learn More
Guide - Amtivo

Ultimate SME Cyber Security Guide – Protecting Your Business

Boost your SME's cyber security with our essential guide. Achieve Cyber Essentials certification to protect assets and benefit from new opportunities.
Learn More
Top 8 cyber security risks for business

Discover 8 of the Major Cyber Security Risks for Businesses in 2025

Discover 8 of the major cyber security risks to your business and how to effectively protect your digital assets.
Learn More
10 biggest cyber attacks of 2021

The Biggest Cyber Attacks Year by Year

Major attacks like SolarWinds and Colonial Pipeline reveal infrastructure flaws and prompt global calls for stronger cyber security.
Learn More
Human Robot Artificial Intelligence

AI and Cyber Security: Is It a Risk or an Opportunity?

Explore artificial intelligence's dual role in cyber security – enhancing defences and posing new threats. Help protect your business from cyber-attacks.
Learn More
Cyber Essentials

Cyber Security Trends – Annual Updates & Insights by Year

Discover the latest cyber threat trends, from AI to ransomware. Learn how to tackle evolving challenges and safeguard your organisation effectively.
Learn More
Post Fallback Image|BAB joins forces with other certification bodies in the fight against rogue labour in the security and event sector|What are the requirements of ISO 9001

UKAS Approves British Assessment Bureau for ISO/IEC 27001:2022

British Assessment Bureau is now accredited to offer audits and certifications to ISO/IEC 27001:2022.
Learn More
Guide - Amtivo

ISO 27001 Beginner’s Guide: Understanding The Standard

Discover the ISO 27001 standard with our comprehensive ISO 27001 beginner’s guide. Understand certification benefits, costs, and implementation steps.
Learn More
ISO 27001 Cost

How Much Does ISO 27001 Certification Cost?

Discover the costs of ISO 27001 certification with our breakdown of what’s involved in the process, from training to audits.
Learn More
What is an ISMS

What Is an Information Security Management System (ISMS)?

Protect your customers’ sensitive data with a robust Information Security Management System. Implement an ISO 27001-certified ISMS.
Learn More
ISO 27001 offers more benefits than simply demonstrating your dedication to information security.

Discover the Benefits of ISO 27001 Certification

ISO 27001 certification can help you implement a robust Information Security Management System. Discover the benefits of ISO 27001.
Learn More

The Major Risks Associated With Cloud Computing

Is cloud computing as safe as it seems? Find out about the security risks and what you can do.
Learn More
ISO 27001 and GDPR how do they work together?

ISO 27001 and GDPR: How Do They Work Together?

ISO 27001 doesn’t guarantee compliance under the GDPR, but certification ensures your organisation is on the right track.
Learn More
Travelex have suffered a ransomware cyber attack

How the Travelex Ransomware Attack Could Have Been Avoided

Find out how what Travelex could have done to avoid falling prey to cyber criminals that held them to ransom.
Learn More
server array inside a data centre

Understanding Data Breach Causes & Response Strategies

Protect your organisation and customers from data breaches. Discover breaches happen and why they are on the rise.
Learn More
UK - Respond to Data Breaches

How ISO 27001 Can Help Businesses Respond to Data Breaches

How your organisation responds to and prevents data breaches is crucial. Discover how ISO 27001 can streamline and fortify the process.
Learn More
What is a legal register?

What Is a Legal Register and Does My Business Need One?

Learn about what a legal register is, why your business needs one and the role it plays in meeting ISO standards.
Learn More
What is red teaming? And how do you do it?

What Is Red Teaming? And How Do You Do It?

Red teaming, a strategic exercise in challenging assumptions, tests organisational resilience. It identifies vulnerabilities, enhancing preparedness for real-world threats.
Learn More
API security is a data breach risk organisations ignore at their peril

API Security Is a Data Breach Risk Organisations Ignore at Their Peril

API security is paramount in safeguarding against data breaches. Learn how to fortify your defenses against potential threats in our guide.
Learn More
Adult business man work at office with mobile phone and desktop

MFA Fatigue: How To Respond to Authentication Threats

Implementing multifactor authentication (MFA) to protect user accounts has for some years been recommended as a cyber security best practice.
Learn More
steeling-password-and-private-data-remotely-scree-2022-11-14-11-05-14-utc

LastPass Data Breach – Are Password Managers Still Secure?

If you’re a user of LastPass, you might have noticed some rather alarming headlines in December about a security breach.
Learn More
What are the threats to Microsoft 365 and can they be countered?

Cyber Security Threats to MS 365 and How To Reduce Risks

It’s hard to imagine that a person reading this won’t have used Microsoft 365 or its desktop predecessor Microsoft Office.
Learn More
Ransomware trends worth paying attention to in 2022

Ransomware Trends Worth Paying Attention to in 2022

Discover the changing landscape of ransomware threats in 2022, from supply chain attacks to double extortion tactics.
Learn More
and how does it apply to you

DBS Record Keeping: Staying GDPR Compliant

There has been a surge of Security companies taking copies of DBS certificates and holding them on file.
Learn More
What is Digital Risk Protection and do you need it

What Is Digital Risk Protection and Do You Need It?

DRP is about securing the parts of a company’s digital presence that fall beyond the remit of traditional cybersecurity.
Learn More
Does my business need a Data Protection Officer (DPO)

When Do You Need a Data Protection Officer?

A Data Protection Officer helps organisations to meet their regulatory obligations in relation to the processing and handling of personal data.
Learn More
Coding computer data depth of field

The Worst Data Breaches in History

We explore the worst data breaches that have happened, what their impact has been and the biggest fines issued under GDPR.
Learn More
Threat from within

The Threat From Within

Barely a day goes by without a big corporate falling victim to a hacking attempt.
Learn More
Template - Amtivo

Free Cyber Security Policy Template & Factors To Consider

Download our free cyber security policy guide & template for UK organisations. Includes best practices, risk assessment & step-by-step process.
Learn More
ISO 27001 Article - Costs

Maintaining ISO 27001 Certification for Your Business

Learn how to maintain your ISO 27001 certification.
Learn More