{"id":1898,"date":"2026-05-09T20:23:45","date_gmt":"2026-05-09T18:23:45","guid":{"rendered":"https:\/\/www.dicisgroup.com\/iso-27001-certification-duration\/"},"modified":"2026-05-11T17:24:56","modified_gmt":"2026-05-11T15:24:56","slug":"iso-27001-certification-duration","status":"publish","type":"post","link":"https:\/\/www.dicisgroup.com\/en\/iso-27001-certification-duration\/","title":{"rendered":"ISO 27001 Certification Duration"},"content":{"rendered":"<p><div class=\"fusion-fullwidth fullwidth-box fusion-builder-row-1 fusion-flex-container nonhundred-percent-fullwidth non-hundred-percent-height-scrolling\" style=\"--awb-border-radius-top-left:0px;--awb-border-radius-top-right:0px;--awb-border-radius-bottom-right:0px;--awb-border-radius-bottom-left:0px;--awb-flex-wrap:wrap;\" ><div class=\"fusion-builder-row fusion-row fusion-flex-align-items-flex-start fusion-flex-content-wrap\" style=\"max-width:1216.8px;margin-left: calc(-4% \/ 2 );margin-right: calc(-4% \/ 2 );\"><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-0 fusion_builder_column_1_1 1_1 fusion-flex-column\" style=\"--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;\"><div class=\"fusion-column-wrapper fusion-column-has-shadow fusion-flex-justify-content-flex-start fusion-content-layout-column\"><div class=\"fusion-title title fusion-title-1 fusion-sep-none fusion-title-text fusion-title-size-one\" style=\"--awb-margin-top-small:0px;--awb-margin-right-small:0px;--awb-margin-bottom-small:20px;--awb-margin-left-small:0px;\"><h1 class=\"fusion-title-heading title-heading-left fusion-responsive-typography-calculated\" style=\"margin:0;--fontSize:36;line-height:1.47;\"><h1>How long does ISO 27001 certification take?<\/h1><\/h1><\/div><\/div><\/div><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-1 fusion_builder_column_1_1 1_1 fusion-flex-column\" style=\"--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;\"><div class=\"fusion-column-wrapper fusion-column-has-shadow fusion-flex-justify-content-flex-start fusion-content-layout-column\"><div class=\"fusion-text fusion-text-1\"><p data-start=\"67\" data-end=\"408\">In the past, a traditional <a href=\"https:\/\/www.dicisgroup.com\/en\/what-is-iso-27001-certification-explained-simply-dicis-ag\/\"><span class=\"hover:entity-accent entity-underline inline cursor-pointer align-baseline\"><span class=\"whitespace-normal\">ISO 27001<\/span><\/span> certification<\/a> often took between 4 and 12 months for small companies. With digital and AI-supported processes, the duration can be significantly reduced.<\/p>\n<p data-start=\"67\" data-end=\"408\">The greatest loss of time usually does not arise from the certification itself, but from complex documentation, lengthy coordination processes, and waiting times with traditional certification bodies. Today, small companies can sometimes prepare for and complete ISO 27001 certification within just a few days or weeks\u2014especially if processes are already in place and implementation is pragmatic.<\/p>\n<\/div><\/div><\/div><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-2 fusion_builder_column_1_1 1_1 fusion-flex-column\" style=\"--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;\"><div class=\"fusion-column-wrapper fusion-column-has-shadow fusion-flex-justify-content-flex-start fusion-content-layout-column\"><div style=\"text-align:center;\"><a class=\"fusion-button button-flat button-xlarge button-custom fusion-button-default button-1 fusion-button-default-span fusion-button-default-type\" style=\"--button_accent_color:#ff6600;--button_border_color:#ff6600;--button_accent_hover_color:#ffffff;--button_border_hover_color:#ffffff;--button_border_width-top:2px;--button_border_width-right:2px;--button_border_width-bottom:2px;--button_border_width-left:2px;--button_gradient_top_color:#ffffff;--button_gradient_bottom_color:#ffffff;--button_gradient_top_color_hover:#ff6600;--button_gradient_bottom_color_hover:#ff6600;\" target=\"_self\" href=\"https:\/\/www.dicisgroup.com\/en\/iso-27001-certification-online-fast-easy-dicis\/\"><span class=\"fusion-button-text awb-button__text awb-button__text--default\">GET INFORMATION ABOUT CERTIFICATION NOW<\/span><\/a><\/div><\/div><\/div><\/div><\/div><div class=\"fusion-fullwidth fullwidth-box fusion-builder-row-2 fusion-flex-container nonhundred-percent-fullwidth non-hundred-percent-height-scrolling\" style=\"--awb-border-radius-top-left:0px;--awb-border-radius-top-right:0px;--awb-border-radius-bottom-right:0px;--awb-border-radius-bottom-left:0px;--awb-margin-top:25px;--awb-flex-wrap:wrap;\" ><div class=\"fusion-builder-row fusion-row fusion-flex-align-items-flex-start fusion-flex-content-wrap\" style=\"max-width:1216.8px;margin-left: calc(-4% \/ 2 );margin-right: calc(-4% \/ 2 );\"><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-3 fusion_builder_column_1_1 1_1 fusion-flex-column\" style=\"--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;\"><div class=\"fusion-column-wrapper fusion-column-has-shadow fusion-flex-justify-content-flex-start fusion-content-layout-column\"><div class=\"fusion-title title fusion-title-2 fusion-sep-none fusion-title-text fusion-title-size-two\" style=\"--awb-margin-top-small:0px;--awb-margin-right-small:0px;--awb-margin-bottom-small:20px;--awb-margin-left-small:0px;\"><h2 class=\"fusion-title-heading title-heading-left fusion-responsive-typography-calculated\" style=\"margin:0;--fontSize:28;line-height:1.21;\"><h2>What does ISO 27001 require of small companies?<\/h2><\/h2><\/div><\/div><\/div><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-4 fusion_builder_column_1_1 1_1 fusion-flex-column\" style=\"--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;\"><div class=\"fusion-column-wrapper fusion-column-has-shadow fusion-flex-justify-content-flex-start fusion-content-layout-column\"><div class=\"fusion-text fusion-text-2\"><p data-start=\"460\" data-end=\"575\">What does a company actually have to meet to be certified to <span class=\"hover:entity-accent entity-underline inline cursor-pointer align-baseline\"><span class=\"whitespace-normal\">ISO\/IEC 27001<\/span><\/span>? Many small companies believe it is only about firewalls, antivirus software, or IT systems. In fact, ISO 27001 takes a holistic view of information security: organisational structures, employees, physical security at the site, and technical safeguards must work together.<\/p>\n<\/div><div class=\"fusion-text fusion-text-3\"><p data-start=\"890\" data-end=\"921\">In our video, you will learn:<\/p>\n<ul data-start=\"922\" data-end=\"1196\">\n<li data-section-id=\"gbscdy\" data-start=\"922\" data-end=\"970\">what requirements ISO 27001 really sets<\/li>\n<li data-section-id=\"14oekux\" data-start=\"971\" data-end=\"1026\">why information security is not purely an IT topic<\/li>\n<li data-section-id=\"zmqdau\" data-start=\"1027\" data-end=\"1075\">what role employees and processes play<\/li>\n<li data-section-id=\"wc2rh7\" data-start=\"1076\" data-end=\"1125\">which technical safeguards are typical<\/li>\n<li data-section-id=\"grc7ye\" data-start=\"1126\" data-end=\"1196\">how small companies can implement the requirements pragmatically<\/li>\n<\/ul>\n<\/div><div class=\"fusion-separator fusion-full-width-sep\" style=\"align-self: center;margin-left: auto;margin-right: auto;margin-top:10px;margin-bottom:10px;width:100%;\"><\/div><div class=\"fusion-video fusion-youtube\" style=\"--awb-max-width:600px;--awb-max-height:350px;--awb-align-self:center;--awb-width:100%;\"><div class=\"video-shortcode\"><div class=\"fluid-width-video-wrapper\" style=\"padding-top:58.33%;\" ><iframe title=\"YouTube video player 1\" src=\"https:\/\/www.youtube.com\/embed\/mCWWaDV7Dbo?wmode=transparent&autoplay=0\" width=\"600\" height=\"350\" allowfullscreen allow=\"autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture;\"><\/iframe><\/div><\/div><\/div><div class=\"fusion-separator fusion-full-width-sep\" style=\"align-self: center;margin-left: auto;margin-right: auto;margin-top:10px;margin-bottom:10px;width:100%;\"><\/div><div class=\"fusion-text fusion-text-4\"><p data-start=\"0\" data-end=\"348\">Unlike <a href=\"https:\/\/www.dicisgroup.com\/en\/what-is-iso-90012026-an-easy-to-understand-introduction\/\"><span class=\"hover:entity-accent entity-underline inline cursor-pointer align-baseline\"><span class=\"whitespace-normal\">ISO 9001<\/span><\/span> quality management<\/a> and <a href=\"https:\/\/www.dicisgroup.com\/en\/iso-140012026-an-easy-to-understand-introduction\/\"><span class=\"hover:entity-accent entity-underline inline cursor-pointer align-baseline\"><span class=\"whitespace-normal\">ISO 14001<\/span><\/span> environmental management<\/a>, <span class=\"hover:entity-accent entity-underline inline cursor-pointer align-baseline\"><span class=\"whitespace-normal\">ISO 27001<\/span><\/span> <a href=\"https:\/\/www.dicisgroup.com\/en\/what-is-an-information-security-management-system-according-to-iso-27001\/\">information security management<\/a> is primarily a risk-oriented standard. The aim is to establish <a href=\"https:\/\/www.dicisgroup.com\/de\/was-ist-risikomanagement\/\">risk management<\/a>, i.e., to systematically identify and assess risks to information and data and reduce them through appropriate measures.<\/p>\n<p data-start=\"350\" data-end=\"534\">ISO 27001 takes a holistic view of information security: organisation, employees, premises, technology, and risks must be considered together and safeguarded.<\/p>\n<\/div>\n<div class=\"table-1\">\n<table>\n<thead>\n<tr>\n<th>Area<\/th>\n<th>What does ISO 27001 require?<\/th>\n<th>Simply explained<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td>Organisation<\/td>\n<td>Clear responsibilities, security policies, and defined processes<\/td>\n<td>Information security must not be left to chance. The company must define who is responsible for what and how information is handled.<\/td>\n<\/tr>\n<tr>\n<td>Personnel<\/td>\n<td>Training, awareness, and clear rules of conduct<\/td>\n<td>Employees must know how to handle passwords, data, emails, AI tools, and security incidents.<\/td>\n<\/tr>\n<tr>\n<td>Premises<\/td>\n<td>Protection of offices, equipment, and sensitive areas<\/td>\n<td>Not only computers must be protected. Rooms, servers, files, or workstations must also not be freely accessible.<\/td>\n<\/tr>\n<tr>\n<td>Technology<\/td>\n<td>Technical safeguards for systems and data<\/td>\n<td>These include, for example, backups, antivirus protection, access controls, encryption, or multi-factor authentication.<\/td>\n<\/tr>\n<tr>\n<td>Risk analyses<\/td>\n<td>Identify and assess risks and derive appropriate measures<\/td>\n<td>Companies must assess: What threats exist? How likely are they? And which safeguards are necessary?<\/td>\n<\/tr>\n<tr>\n<td>External service providers<\/td>\n<td>Control of suppliers and IT service providers<\/td>\n<td>Companies must ensure that external partners also handle information securely.<\/td>\n<\/tr>\n<tr>\n<td>Security incidents<\/td>\n<td>Processes for handling security issues<\/td>\n<td>The company must know what to do in the event of phishing, data loss, or cyberattacks.<\/td>\n<\/tr>\n<tr>\n<td>Continuous improvement<\/td>\n<td>Regular review and further development<\/td>\n<td>Information security is not a one-off project. Risks and safeguards must be reviewed and improved regularly.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<div class=\"fusion-separator fusion-full-width-sep\" style=\"align-self: center;margin-left: auto;margin-right: auto;margin-top:10px;margin-bottom:10px;width:100%;\"><\/div><div style=\"text-align:center;\"><a class=\"fusion-button button-flat button-xlarge button-custom fusion-button-default button-2 fusion-button-default-span fusion-button-default-type\" style=\"--button_accent_color:#ff6600;--button_border_color:#ff6600;--button_accent_hover_color:#ffffff;--button_border_hover_color:#ffffff;--button_border_width-top:2px;--button_border_width-right:2px;--button_border_width-bottom:2px;--button_border_width-left:2px;--button_gradient_top_color:#ffffff;--button_gradient_bottom_color:#ffffff;--button_gradient_top_color_hover:#ff6600;--button_gradient_bottom_color_hover:#ff6600;\" target=\"_self\" href=\"https:\/\/www.dicisgroup.com\/en\/iso-27001-certification-online-fast-easy-dicis\/\"><span class=\"fusion-button-text awb-button__text awb-button__text--default\">GET INFORMATION ABOUT CERTIFICATION NOW<\/span><\/a><\/div><\/div><\/div><\/div><\/div><div class=\"fusion-fullwidth fullwidth-box fusion-builder-row-3 fusion-flex-container nonhundred-percent-fullwidth non-hundred-percent-height-scrolling\" style=\"--awb-border-radius-top-left:0px;--awb-border-radius-top-right:0px;--awb-border-radius-bottom-right:0px;--awb-border-radius-bottom-left:0px;--awb-flex-wrap:wrap;\" ><div class=\"fusion-builder-row fusion-row fusion-flex-align-items-flex-start fusion-flex-content-wrap\" style=\"max-width:1216.8px;margin-left: calc(-4% \/ 2 );margin-right: calc(-4% \/ 2 );\"><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-5 fusion_builder_column_1_1 1_1 fusion-flex-column\" style=\"--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;\"><div class=\"fusion-column-wrapper fusion-column-has-shadow fusion-flex-justify-content-flex-start fusion-content-layout-column\"><div class=\"fusion-title title fusion-title-3 fusion-sep-none fusion-title-text fusion-title-size-two\" style=\"--awb-margin-top-small:0px;--awb-margin-right-small:0px;--awb-margin-bottom-small:20px;--awb-margin-left-small:0px;\"><h2 class=\"fusion-title-heading title-heading-left fusion-responsive-typography-calculated\" style=\"margin:0;--fontSize:28;line-height:1.21;\"><h2>Do small companies really have to meet all ISO 27001 requirements?<\/h2><\/h2><\/div><\/div><\/div><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-6 fusion_builder_column_1_1 1_1 fusion-flex-column\" style=\"--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;\"><div class=\"fusion-column-wrapper fusion-column-has-shadow fusion-flex-justify-content-flex-start fusion-content-layout-column\"><div class=\"fusion-text fusion-text-5\"><p>Yes\u2014but not with the same level of complexity as large corporations. <span class=\"hover:entity-accent entity-underline inline cursor-pointer align-baseline\"><span class=\"whitespace-normal\">ISO\/IEC 27001<\/span><\/span> explicitly allows security measures to be adapted to the company\u2019s size, risks, and structure.<\/p>\n<p data-start=\"324\" data-end=\"483\">A small service company with ten employees normally does not need highly complex security structures like an international corporation.<\/p>\n<p data-start=\"485\" data-end=\"547\">The standard does not require unnecessary bureaucracy. What matters is:<\/p>\n<ul data-start=\"548\" data-end=\"704\">\n<li data-section-id=\"vw5bai\" data-start=\"548\" data-end=\"577\">that risks are identified<\/li>\n<li data-section-id=\"1s0zvlo\" data-start=\"578\" data-end=\"621\">that meaningful safeguards are in place<\/li>\n<li data-section-id=\"pgqr10\" data-start=\"622\" data-end=\"668\">that responsibilities are clearly defined<\/li>\n<li data-section-id=\"1c2glio\" data-start=\"669\" data-end=\"704\">that employees are informed<\/li>\n<\/ul>\n<p data-start=\"706\" data-end=\"780\">Many small companies implement ISO 27001 far more pragmatically today:<\/p>\n<ul data-start=\"781\" data-end=\"895\">\n<li data-section-id=\"8iqyxa\" data-start=\"781\" data-end=\"803\">simple policies<\/li>\n<li data-section-id=\"1yu9l5a\" data-start=\"804\" data-end=\"820\">clear processes<\/li>\n<li data-section-id=\"1ft0vh\" data-start=\"821\" data-end=\"845\">digital documentation<\/li>\n<li data-section-id=\"1yevb9o\" data-start=\"846\" data-end=\"871\">compact risk analyses<\/li>\n<li data-section-id=\"lb31y5\" data-start=\"872\" data-end=\"895\">practical training<\/li>\n<\/ul>\n<p data-start=\"897\" data-end=\"1010\">Small companies often even have advantages because processes are simpler and decision-making paths are shorter.<\/p>\n<\/div><\/div><\/div><\/div><\/div><div class=\"fusion-fullwidth fullwidth-box fusion-builder-row-4 fusion-flex-container nonhundred-percent-fullwidth non-hundred-percent-height-scrolling\" style=\"--awb-border-radius-top-left:0px;--awb-border-radius-top-right:0px;--awb-border-radius-bottom-right:0px;--awb-border-radius-bottom-left:0px;--awb-margin-top:25px;--awb-flex-wrap:wrap;\" ><div class=\"fusion-builder-row fusion-row fusion-flex-align-items-flex-start fusion-flex-content-wrap\" style=\"max-width:1216.8px;margin-left: calc(-4% \/ 2 );margin-right: calc(-4% \/ 2 );\"><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-7 fusion_builder_column_1_1 1_1 fusion-flex-column\" style=\"--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;\"><div class=\"fusion-column-wrapper fusion-column-has-shadow fusion-flex-justify-content-flex-start fusion-content-layout-column\"><div class=\"fusion-title title fusion-title-4 fusion-sep-none fusion-title-text fusion-title-size-two\" style=\"--awb-margin-top-small:0px;--awb-margin-right-small:0px;--awb-margin-bottom-small:20px;--awb-margin-left-small:0px;\"><h2 class=\"fusion-title-heading title-heading-left fusion-responsive-typography-calculated\" style=\"margin:0;--fontSize:28;line-height:1.21;\"><h2>Does my company have to be perfectly organised for ISO 27001?<\/h2><\/h2><\/div><\/div><\/div><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-8 fusion_builder_column_1_1 1_1 fusion-flex-column\" style=\"--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;\"><div class=\"fusion-column-wrapper fusion-column-has-shadow fusion-flex-justify-content-flex-start fusion-content-layout-column\"><div class=\"fusion-text fusion-text-6\"><div class=\"flex flex-col text-sm pb-25\">\n<p>No. The standard does not require a perfect company, but a systematic approach to risks and continuous improvement.<\/p>\n<p data-start=\"2193\" data-end=\"2301\">Many companies postpone ISO 27001 because they believe:<br \/>\n\u201cWe are not far enough along for that yet.\u201d<\/p>\n<p data-start=\"2303\" data-end=\"2342\">In practice, that is rarely necessary.<\/p>\n<p data-start=\"2344\" data-end=\"2369\">ISO 27001 does not expect:<\/p>\n<ul data-start=\"2370\" data-end=\"2448\">\n<li data-section-id=\"lkt3dt\" data-start=\"2370\" data-end=\"2389\">perfect processes<\/li>\n<li data-section-id=\"1fbfne3\" data-start=\"2390\" data-end=\"2419\">complete freedom from errors<\/li>\n<li data-section-id=\"zrjt4a\" data-start=\"2420\" data-end=\"2448\">maximum corporate structures<\/li>\n<\/ul>\n<p data-start=\"2450\" data-end=\"2468\">The standard expects:<\/p>\n<ul data-start=\"2469\" data-end=\"2585\">\n<li data-section-id=\"zb7tig\" data-start=\"2469\" data-end=\"2496\">traceable processes<\/li>\n<li data-section-id=\"grbss4\" data-start=\"2497\" data-end=\"2527\">a conscious approach to risks<\/li>\n<li data-section-id=\"1m631or\" data-start=\"2528\" data-end=\"2556\">clear responsibilities<\/li>\n<li data-section-id=\"z20zfu\" data-start=\"2557\" data-end=\"2585\">regular improvements<\/li>\n<\/ul>\n<p data-start=\"2587\" data-end=\"2735\">That is why many companies start with simple, pragmatic security management and develop it step by step.<\/p>\n<p data-start=\"2737\" data-end=\"2864\" data-is-last-node=\"\" data-is-only-node=\"\">Especially for small companies, this pragmatic approach is often far more sensible than overly complex security structures.<\/p>\n<\/div>\n<\/div><div style=\"text-align:center;\"><a class=\"fusion-button button-flat button-xlarge button-custom fusion-button-default button-3 fusion-button-default-span fusion-button-default-type\" style=\"--button_accent_color:#ff6600;--button_border_color:#ff6600;--button_accent_hover_color:#ffffff;--button_border_hover_color:#ffffff;--button_border_width-top:2px;--button_border_width-right:2px;--button_border_width-bottom:2px;--button_border_width-left:2px;--button_gradient_top_color:#ffffff;--button_gradient_bottom_color:#ffffff;--button_gradient_top_color_hover:#ff6600;--button_gradient_bottom_color_hover:#ff6600;\" target=\"_self\" href=\"https:\/\/www.dicisgroup.com\/en\/iso-27001-certification-online-fast-easy-dicis\/\"><span class=\"fusion-button-text awb-button__text awb-button__text--default\">GET INFORMATION ABOUT CERTIFICATION NOW<\/span><\/a><\/div><\/div><\/div><\/div><\/div><\/p>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":3,"featured_media":1901,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[29],"tags":[],"class_list":["post-1898","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-iso-27001"],"_links":{"self":[{"href":"https:\/\/www.dicisgroup.com\/en\/wp-json\/wp\/v2\/posts\/1898","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.dicisgroup.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.dicisgroup.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.dicisgroup.com\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.dicisgroup.com\/en\/wp-json\/wp\/v2\/comments?post=1898"}],"version-history":[{"count":3,"href":"https:\/\/www.dicisgroup.com\/en\/wp-json\/wp\/v2\/posts\/1898\/revisions"}],"predecessor-version":[{"id":1902,"href":"https:\/\/www.dicisgroup.com\/en\/wp-json\/wp\/v2\/posts\/1898\/revisions\/1902"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.dicisgroup.com\/en\/wp-json\/wp\/v2\/media\/1901"}],"wp:attachment":[{"href":"https:\/\/www.dicisgroup.com\/en\/wp-json\/wp\/v2\/media?parent=1898"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.dicisgroup.com\/en\/wp-json\/wp\/v2\/categories?post=1898"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.dicisgroup.com\/en\/wp-json\/wp\/v2\/tags?post=1898"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}