Is Google Drive compliant with control A.8.15 in ISO 27001:2022? [closed]

Is Google Drive compliant with control A.8.15 in ISO 27001:2022?
As ISO 27001 requirements for logging and monitoring, are Event logging, Log storage, Protection of logs, and Analysis of logs, could I use Google Cloud as it is keeping this… Continue reading Is Google Drive compliant with control A.8.15 in ISO 27001:2022? [closed]

How to do R&D with rapidly changing open source software libraries and APIs in the presence of sensitive data while maintaining ISO27001 compliance

I do research and development at an ISO27001 certified company that makes enterprise software. As such, I work from an isolated environment so that I can experiment with non-IT-approved software programs and libraries, as well as APIs (i…. Continue reading How to do R&D with rapidly changing open source software libraries and APIs in the presence of sensitive data while maintaining ISO27001 compliance

Is Synology’s Active Backup for Business Destination Encryption Secure or Snake Oil?

Synology’s Active Backup for Business has a feature for Destination Encryption which only seems to work with BTRFS. It works so that you have to set it up when creating the BTRFS storage. At this point you specify a password and when finis… Continue reading Is Synology’s Active Backup for Business Destination Encryption Secure or Snake Oil?