Name: Behind the SOC 2 Report: What Auditors, MSPs & Platforms Wish You Knew
Start: 2025-09-11T14:00:00Z
End: 2025-09-11T14:00:49.000Z
Location: BrightTALK
Rating: 5

Elevate your cybersecurity, compliance and privacy knowledge with ISMS.online. Featuring expert speakers, our webinar channel will cover everything you need to know about information security, data privacy and compliance, helping organisations protect their business and ensure regulatory compliance.

79% of businesses were hit by a security incident caused by a third-party vendor or supply chain partner in the past year—an increase of over 20% from 2023. Under NIS 2 and DORA, that risk is now your legal responsibility.

Join us for a 30-minute session where we'll show you how to take control of supply chain security and compliance using ISMS.online's purpose-built NIS 2 and DORA solutions.

You'll learn how to:
• Build a structured, searchable supplier inventory
• Run integrated risk assessments using our built-in risk bank
• Share and track policies with vendors and third parties
• Monitor performance and policy compliance with clear audit trails
• Generate real-time reports that show you're in control

We'll walk through real-world scenarios to show how the platform helps you:
• Proactively resolve gaps in overdue vendor documentation
• Streamline due diligence and onboarding for ICT suppliers under DORA
• Manage incidents linked to third parties with traceable actions and evidence

Whether you're just getting started or racing toward compliance deadlines, this webinar will give you a practical look at simplifying supply chain security and proving it.

Simplify Supply Chain Compliance for NIS 2 and DORA with ISMS.online

Regulatory pressures on supply chain security are tightening. DORA, NIS 2, the EU AI Act, and other global regulations are introducing stricter requirements for third-party risk management, cybersecurity resilience, and compliance oversight. Businesses now face mounting challenges securing their supply chains while navigating a complex regulatory landscape.

Join us for an insightful webinar where we'll break down the latest regulatory requirements and show you how ISO 27001 provides a unified approach to securing your supply chain and meeting compliance obligations efficiently.

What You'll Learn:
>The Supply Chain Compliance Landscape – Understand the key security requirements from DORA, NIS 2, and the EU AI Act and how they impact your third-party risk strategy.
>ISO 27001 as Your Compliance Roadmap – Learn how aligning with ISO 27001 simplifies multi-regulation compliance, helping you build a secure and resilient supply chain.
>Practical Compliance Strategies – Get expert insights on conducting vendor risk assessments, automating compliance tracking, and ensuring audit readiness.
>Building a Culture of Security – Discover how to engage leadership and suppliers in supply chain security best practices.

Why Attend?
Supply chain attacks are on the rise, and regulators are taking notice. A recent report found that 62% of organisations suffered a cybersecurity incident originating from a third-party supplier last year. As compliance expectations increase, businesses must act now to secure their supply chains and stay ahead of regulatory risks.

This webinar will give you the knowledge, tools, and strategies to turn compliance into a competitive advantage.

Master Supply Chain Compliance: Actionable Steps to Reduce Risk & Ensure Resilience

Explore the advanced integration capabilities of ISMS.online. Through interactive demos and mocked-up user journeys, you'll see how tools like Slack, JIRA, and data visualisation tools work seamlessly with ISMS.online to drive efficiency, collaboration, and compliance success.

What You'll Learn:
• Step-by-step setups of ISMS.online integrations.
• Realistic scenarios showing how these integrations simplify compliance management.
• Best practices for leveraging integrations to unify workflows.

Why Attend?
• Simplify compliance workflows and reduce tool fatigue.
• Get actionable insights with real-time data visualisation tools.
• Foster team collaboration with Slack and streamline task tracking with JIRA.

Integration Excellence: Connecting ISMS.online with JIRA, ServiceNow, Data Visualisation Tools, and More

The Digital Operational Resilience Act (DORA) is set to redefine how the financial sector approaches digital security and resilience. DORA is focused on strengthening ICT risk management, enhancing incident response capabilities, and ensuring robust third-party oversight. It presents a unique opportunity for businesses to fortify their digital operations against evolving threats while maintaining compliance with the latest regulations.

With 68% of financial institutions now prioritising digital resilience to meet growing regulatory demands (PWC 2023 Global Digital Trust Insights Survey), the need for a proactive and efficient compliance strategy has never been greater. Research also shows that organisations with a well-structured compliance plan are more likely to meet regulatory standards with ease and efficiency (Deloitte, "2024 Regulatory Outlook: Financial Services," 2024).

Join our webinar, where we'll demystify DORA's requirements and show you how leveraging the ISO 27001 standard can help you achieve compliance seamlessly.

Navigating DORA Compliance with ISO 27001: A Roadmap to Digital Resilience

The new NIS 2 Directive will shortly enter into force, bringing stricter cybersecurity and reporting requirements for businesses across the European Union. Are you ready to comply?

Join us for an in-depth webinar where we break down the key aspects of the NIS 2 Directive and demonstrate how ISO 27001 can be your roadmap to compliance. This session will provide you with a comprehensive understanding of what the new regulation entails, which sectors are affected, and the steps your organisation must take to meet its requirements.

What You'll Learn:
• NIS 2 Overview: Understand the key provisions of the NIS 2 Directive and how they impact your business.
• ISO 27001 Alignment: Discover how the ISO 27001 framework maps to NIS 2 requirements, helping you achieve compliance more efficiently.
• Practical Compliance Strategies: Get actionable advice on conducting risk assessments, developing incident response plans, and implementing security controls.
• Building a Culture of Compliance: Learn how to engage your leadership and workforce to foster a security-first mindset.

Why Attend?
Cybersecurity is no longer just a technical issue; it's a business imperative. Recent statistics reveal that 58% of European businesses experienced a cyber incident last year, highlighting the need for robust security measures and regulatory alignment. This webinar will equip you with the knowledge and tools to confidently navigate NIS 2 and enhance your overall cybersecurity strategy.

Register today and take proactive steps towards NIS 2 compliance, turning regulatory requirements into opportunities for growth and resilience!

Mastering NIS 2 Compliance: A Practical Approach with ISO 27001

Getting ISO 27001 certified can be challenging, especially when it comes to preparing for and undergoing the certification audit. Even experienced professionals can find themselves trying to figure out exactly what to expect and how to demonstrate compliance most effectively.

In this informative webinar, a panel of seasoned ISO 27001 auditors will provide an in-depth guide to successfully navigating your first ISO 27001 certification audit. Drawing on their experience performing information security management system (ISMS) audits, the panel will outline what auditors look for and common pitfalls to avoid.

Key topics covered will include:
• Understanding the ISO 27001 audit process and timeline
• Ensuring documentation meets certification requirements
• Identifying and preparing key personnel who will interface with auditors
• Developing and practising responses for likely auditor questions
• Proactively addressing gaps to avoid non-conformities
• Maintaining compliance after certification
• How the ISMS.online platform gets you 81% of the way towards compliance straight out of the box 

Whether you're an ISO Coordinator preparing for an upcoming audit or a member of the information security team supporting audit readiness, this webinar will equip you with the practical knowledge needed to achieve certification on the first attempt. You'll walk away with a checklist of specific actions to demonstrate compliance when the auditors arrive.
.
Reserve your place now for a session that promises to enlighten and empower you in mastering ISO 27001 audits. Elevate your organisation's security measures and align with global standards.

Navigating ISO 27001 Certification Audits: An Auditor's Guide to Success

Join our expert-led webinar and gain valuable insights into the updated ISO 27001:2022 information security management systems (ISMS) standard. This webinar is designed to help organisations understand the critical changes introduced by the new standard and provide guidance on effectively transitioning from the previous version.

The importance of adopting the latest standard cannot be overstated. A recent ISO survey reveals that organisations certified to ISO 27001 reported significant benefits, including improved information security (91%), increased customer confidence (78%), and better alignment with regulatory requirements (76%).

During the webinar, attendees will:
1. Explore the fundamental changes ISO 27001:2022 introduced, including revised requirements and new Annex A controls.
2. Understand the impact on organisations currently implementing ISO 27001 and the necessary adjustments to align with the updated standard.
3. Discover the implications for organisations certified to ISO 27001:2013, including the steps required to maintain compliance and the mandatory transition deadline of October 2025.
4. Learn how to develop a comprehensive transition strategy that minimises disruption and ensures a smooth migration to the new standard.
5. Gain practical advice and solutions from our experts on successfully implementing ISO 27001:2022 within their organisations.

This webinar is essential for information security professionals, compliance officers, and decision-makers who maintain and enhance their organisation's ISMS. By attending, you will acquire the knowledge and tools to confidently navigate the transition to ISO/IEC 27001:2022 and ensure your organisation remains at the forefront of information security management.
Take advantage of this opportunity to learn from industry experts and position your organisation to consolidate its information security compliance successfully.

Transitioning to ISO 27001:2022: Key Changes and Effective Strategies

The emergence of Artificial Intelligence (AI) as a transformative technology has necessitated the creation of new standards to ensure its ethical and responsible use. The ISO 42001 standard represents a pioneering effort to set benchmarks for AI compliance, guiding organisations in developing, deploying, and managing AI technologies. This webinar comprehensively explores ISO 42001 to equip businesses with the knowledge and tools needed to excel in effective, secure AI management.

Our expert speakers will demystify the standard's core principles and requirements, helping you understand how this standard can help your organisation navigate the complexities of AI compliance, mitigate risks, and ensure AI systems' ethical and responsible deployment.

Key Takeaways:
• Comprehensive Introduction to ISO 42001: Attendees will receive a detailed introduction to the ISO 42001 standard, including its scope, purpose, and critical principles. 
• Understanding AI's Compliance Impact: The webinar will explore the unique challenges and opportunities presented by AI in the compliance landscape. 
• Preparation for ISO 42001 Compliance: The webinar's core focuses on actionable steps organisations can take to align with ISO 42001 standards. 

Participants will emerge from this webinar with a solid understanding of the ISO 42001 standard and its applicability to their business operations. More importantly, you will gain a clear action plan for enhancing AI compliance in your organisations, ensuring your AI initiatives are responsible and aligned with global standards.

ISO 42001 Explained: Unlocking Secure AI Management In Your Business

Cloud adoption is accelerating rapidly, with Gartner predicting that cloud computing will shift from a technology disruptor to a necessary component for maintaining business competitiveness by 2028. However, security risks remain a top concern, as evidenced by a recent survey showing that 24% of organisations faced a cloud security incident last year.

As your organisation's cloud footprint grows into a vital business asset, robust security and compliance will be imperative for success. You can take control of your cloud future by leveraging standards like ISO 27017 and ISO 27018 for cloud security and privacy.

Attending this webinar will provide an:
• Introduction to ISO 27017 and ISO 27018, explaining their scope and objectives in cloud computing.
• Explanation of how these standards extend and support the principles and controls outlined in ISO 27002 and ISO 27001 
• Summary of the risks associated with cloud services and how to implement the recommended security and privacy controls.
• Insight into the critical security and privacy controls to prioritise for NIS 2 ahead of the October deadline
• Interactive Q&A- get answers to your questions and discuss challenges and solutions in real-time.

Ideal for cloud security leaders, CISOs, IT professionals, and compliance teams responsible for managing cloud security and privacy within their organisations.

Join this webinar to empower your organisation with practical approaches to reinforce cloud security and achieve compliance using ISO 27017 and ISO 27018 as strategic enablers.

Securing Your Cloud Setup: Unlocking The Power of ISO 27017 & 27018 Compliance

Gartner predicts that by 2025, supply chain risk management will be a critical success driver for more than 50% of organisations. And it is no wonder, with recent Capita and MoveIT breaches hitting the headlines and highlighting just how pervasive supply chain risk is.  

From data breaches to cyberattacks, the implications of supply chain vulnerabilities can be far-reaching, affecting customer trust, brand reputation, and overall business resilience.  

This upcoming webinar will provide valuable insights into the critical risks facing business supply chains. It will offer practical advice for organisations to proactively secure their supply chain operations and outline how the ISO 27001 framework can simplify and streamline supplier management.  

This 45-minute session will cover the following:  

> The current risk landscape troubling the supply chain   
> Supply chain management best practices  
> How ISO 27001 can be leveraged to secure the supply chain and manage third-party suppliers effectively, at scale and over time 
> How The ISMS.online platform approaches supply chain risk management  

Whether you are a CEO, board member, or cybersecurity professional, this webinar is for you. You will leave with a deeper understanding of supply chain management, practical strategies for building and maintaining it in your organisation, and a better understanding of how ISO 27001 can enhance your operational resilience in an increasingly connected world.  

Secure your place today.

Can’t attend live? Register today, and we’ll send you the on-demand recording.

Securing the Supply Chain- Leveraging ISO 27001 For Effective Risk Management

Join us for a first-of-its-kind webinar here at ISMS.online, where our CEO, Luke Dash and CTO, Sam Peters, explore some of the key findings from our inaugural State of Information Security Report. 

This comprehensive report features insight and data from over 500 C-level information security practitioners conducted by an independent research company across six key business verticals. 

During the session, Luke and Sam will share insights into:
• Attack types, frequency, and implications
• Regulatory compliance challenges, fines, and approaches 
• People, budgets, and investment 

And offer practical takeaways to help improve your organisation's information security posture.

Whether you are a small business owner or a cybersecurity professional, this webinar is for you. You will leave with practical advice and actionable steps to help unlock your information security and compliance advantage! 

Secure your place today. 

Can’t attend live? Register today and we’ll send you the on-demand recording.

2023 State of Information Security Report: Key Findings

In today's digital age, building digital trust is critical to the success of any organisation. In fact, recent McKinsey research shows that digital trust leaders will see annual growth rates of at least 10% on their top and bottom lines. 

Yet, according to the recent PwC Digital Trust Report, just 27% of senior leaders believe their current cybersecurity strategies will enable them to achieve digital trust. And even fewer, 25%, believe it helps them comply efficiently and effectively with regulations.

Join us for an insightful webinar exploring the challenges and opportunities for building digital trust for the future. Our expert speakers will provide practical advice and actionable steps for businesses looking to establish and maintain trust with their customers and stakeholders, with a particular focus on how ISO 27001 can help.

This 45-minute session will cover the following:
• Why digital trust is critical for businesses in the digital age
• The impact of data breaches and cyber-attacks on digital trust
• Best practices for building and maintaining digital trust, including the use of ISO 27001
• The importance of transparency and clear communication in building trust

Whether you are a CEO, board member, or cybersecurity professional, this webinar is for you. You will leave with a deeper understanding of the importance of digital trust, practical strategies for building and maintaining it in your organisation, and a better understanding of how ISO 27001 can enhance your cybersecurity posture.

Building Digital Trust: An ISO 27001 Approach to Managing Cybersecurity Risks

Data privacy is no longer a nice to have; it's an essential requirement for any business looking to build a strong foundation for growth.

As an organisation, you've probably heard of: 
>The DPA (Data Protection Act)
> UK GDPR (General Data Protection Regulation)
> EU GDPR (General Data Protection Regulation)
> CCPA (California Consumer Privacy Act) 
> Australian Privacy Legislation Amendment

Not only do each of these regulations require organisations to ensure the privacy of any personal data they process, but they also contain hefty penalties for non-compliance.

Whilst these regulations outline what needs to be protected, they don't provide much guidance on precisely how to protect this data. This is where ISO 27701 comes in. Launched in 2019, ISO 27701 is a companion standard to the ISO 27001 information security standard, and it outlines precisely how to establish and demonstrate effective data privacy controls. 

Join our upcoming webinar, where we'll simplify this complex data privacy landscape and discuss how organisations can achieve effective data privacy. Learning outcomes include:

• The importance of data privacy and how ISO 27701 can help
• The critical elements of the ISO 27701 standard and how it complements ISO 27001
• The process of implementing ISO 27701 in an organisation
• Practical tips for ensuring effective data privacy management

Every ISMS.online Insights Webinar ends with a live Q&A where you can put your questions directly to our GRC experts and get answers in real-time 

Secure your place today.

Protecting Privacy: How To Achieve Effective Data Privacy With ISO 27701

Learn how the leading information security framework can benefit your business and supercharge your information security management. 

Implementing effective information security management has never been higher on the business agenda. It is integral to business success, so how can businesses set themselves up for success in this space?

Information security management frameworks are one of the best tools to empower companies in defining the processes and procedures to assess, monitor, and mitigate cyber risk. 

Our upcoming webinar will break down the information security management framework, ISO 27001: 2022, exploring the business benefits and how it enables companies to build a robust cyber security strategy.

This 30-minute webcast will:

• Breakdown what ISO 27001 is and how the framework is structured 
• Explain the business benefits associated with this information security management framework
• Highlight common pitfalls to watch out for when working with information security management frameworks
• Provide best practice advice for approaching ISO 27001 certifications

Simplifying Security: Everything You Need to Know About ISO 27001: 2022

Achieving SOC 2 is about more than passing an audit; it’s about building trust, proving resilience, and staying compliant in a complex security landscape. However, the journey to SOC 2 can feel confusing, slow, or expensive for many businesses, especially when relying on fragmented tools or over-automated solutions that promise shortcuts but undermine long-term success.

In this expert-led webinar, you’ll get a 360° view of SOC 2 from the three key players who make it happen:
• The auditor who issues your report,
• The MSP who supports execution, and
• The compliance platform that helps bring it all together into a manageable, structured, and auditable system.

We’ll explore what each stakeholder expects, where businesses often get stuck, and how to build a right-sized SOC 2 program that delivers results, without taking shortcuts that cost you in the long run.

What You’ll Learn:
• How SOC 2 Works in Practice – What auditors look for, what customers expect, and what internal teams must deliver.
• The Value of People, Process & Platform – How ISMS.online enables organisations to operationalise compliance and simplify the day-to-day work of SOC 2, without relying on black-box automation.
• Lessons from the Field – Real-world experiences from MSPs delivering SOC 2 support across clients, and how they work alongside ISMS.online to create scalable, efficient outcomes.
• Smart Steps to Sustainable Success – How to start, scope, and structure your SOC 2 journey in a way that supports long-term trust and resilience.

Behind the SOC 2 Report: What Auditors, MSPs & Platforms Wish You Knew

SOC 2

Information Security

Risk Management

Regulations

Compliance

Data Security

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Behind the SOC 2 Report: What Auditors, MSPs & Platforms Wish You Knew

Presented by

About this talk

ISMS.online