Explore cyber compliance blogs

Discover a curated collection of blogs covering cybersecurity frameworks, industry updates, and expert tips. Dive into content designed to inform and guide you in mastering compliance and security.

Explore framework collections

Latest articles

29.12.2025

Denmark’s Energy Resilience Order: a practical compliance guide for cyber and operations teams

Understa Denmark’s Energy Resilience Order for the energy sector and how it implements NIS2 and CER. Covers who is in scope, management duties, risk and preparedness planning, technical and organizational safeguards, incident reporting, and more.

Understanding Saudi Arabia’s Personal Data Protection Law (PDPL)

Understanding the UK’s Cyber Assessment Framework 4.0 (CAF 4.0)

Cybersecurity awareness: Building a security-first culture that actually works

Frameworks

Browse all articles ->

Denmark’s Energy Resilience Order: a practical compliance guide for cyber and operations teams

Understa Denmark’s Energy Resilience Order for the energy sector and how it implements NIS2 and CER. Covers who is in scope, management duties, risk and preparedness planning, technical and organizational safeguards, incident reporting, and more.

Understanding Saudi Arabia’s Personal Data Protection Law (PDPL)

Understand how Personal Data Protection Law in Saudi Arabia works and how it differs from similar frameworks such as GDPR.

Understanding the UK’s Cyber Assessment Framework 4.0 (CAF 4.0)

Learn how the Cyber Assessment Framework 4.0 helps organisations manage cyber risk, strengthen resilience, and support better leadership decisions through clear outcomes and practical assessment.

Compliance & Security

Browse all articles ->

Cybersecurity awareness: Building a security-first culture that actually works

Cybersecurity awareness works best when it fits into everyday routines. Discover practical ways to build secure habits, proactive alerts, and a culture that supports smarter decisions.

How to compare cybersecurity frameworks? Guide to comparison

Compare any framework like ISO 27001, SOC 2, GDPR, NIS2, and learn how to spot overlaps, identify gaps, and use a tool that simplifies cybersecurity framework comparison.

What is Statement of Applicability (SoA) in ISO 27001?

In this blog, we'll cover the main purpose and benefits of a well-working Statement of Applicability document. We'll also explain why SoA is important, and 4 key roles it can play in information security work.

ISMS

Browse all articles ->

Streamline ISO 27001 compliance with AI: Building the ISMS baseline

How to use AI to build a tailored ISMS baseline in minutes, and get you to a flying start on ISO 27001 work? By using AI in a controlled way, you won't degrade quality but will save your time on implementing security - not writing documents.

What is an ISMS? A guide to information security management systems

Learn what ISMS is, why it matters, and how to implement an ISMS step-by-step. See how ISO 27001 and NIS2 fit into your information security management system.

ISMS implementation: comparison of documents, wikis, ISMS tools and GRC

There are a few different approaches to building an ISMS. In this post, we’ll compare these different methods, helping you understand which might be the best fit for your organization’s security management needs.

Partner portal

Browse all articles ->

How cyber advisors can scale up without hiring a large team

Growing cyber consultancy doesn't always require adding headcount. With Cyberday, managing multiple customers efficiently is easier and you can deliver consistent results.

What is a vCISO? Understanding the role of virtual CISO

What is a vCISO, what they do, and why the virtual CISO model is growing fast among companies and cybersecurity consultants.

What is a modular cyber security framework and why they are essential for consultants

Modular cyber security frameworks make compliance management easier, and helps consultants scale faster, win more deals, and build recurring revenue.

News and trends

Browse all articles ->

Cyberday AI Assistant, framework comparisons & Mass-editing: Cyberday product and news summary 9/2025 🛡️

This is the September news and product review from Cyberday and also a summary of the latest admin webinar. Read about Cyberday's new AI Assistant, how frameworks compare and what is on development roadmap.

NIS2 delays, healthcare breaches & improved Trust Center: Cyberday product and news summary 5/2025 🛡️

This is the May news and product review from Cyberday and also a summary of the latest admin webinar. Read about NIS2 delays, recent cyberattacks as well as recent and future development on Cyberday.

10 things I wish I knew: Starting your ISO 27001 project on the right track

This post shares 10 key lessons learned from going through an ISO 27001 certification project - from the importance of setting clear goals and managing documentation to the realities of risk management and the value of using the right tools.

Product updates

Browse all articles ->

10 new frameworks available: National NIS2 frameworks, CAF 4.0, Saudi PDPL and more

Cyberday adds Saudi PDPL, CAF 4.0, MSBFS regulations, and NIS2 national laws for Portugal, Slovenia, Slovakia, and Åland. Expand your compliance coverage today.

New global and national frameworks now available in Cyberday

Cyberday adds new frameworks to support global cybersecurity compliance, including the CER Directive, NEN 7510, China Cybersecurity Act, and national NIS2 implementations in 5 countries.

Introducing: Cyberday’s new AI Assistant 🚀

Introduction to the capabilities of Cyberday's new AI Assistant, that will be published inside the app still during this month.

Company updates

Browse all articles ->

Cyberday Fall 2025 Round-Up: Navigating growth

Cyberday’s 2025 fall roundup highlights major growth, new AI-powered security tools, expanded compliance frameworks, a new HQ, and key event launches — setting the stage for an ambitious 2026.

Cyberday’s AI "Fast Track" cuts ISMS setup to minutes

We've unveiled Cyberday’s new AI-powered “Fast Track.” It’s built to help organizations meet information security requirements in record time, turning compliance from a paperwork process into real-time assurance.

Cyberday listed on the Deloitte 2025 Technology Fast 50!

The Cyberday team is thrilled to announce that we have been recognized as one of Finland's fastest-growing technology companies, placing 33rd on the prestigious Deloitte Technology Fast 50 list.

Framework collections

Explore framework collection

ISO 27001

ISO 27001 is the global standard for establishing, implementing, and maintaining an Information Security Management System (ISMS). This framework helps organizations manage risks to their data security, ensuring confidentiality, integrity, and availability.

Connected blogs:

ISO 27001 and ISO 9001: Differences, how they work together and benefits of combining

10 things I wish I knew: Starting your ISO 27001 project on the right track

ISO 27001 compliance and certification checklist

NIS 2 (Network and Information Security Directive 2)

NIS 2 expands on the original NIS Directive, setting updated cybersecurity requirements for critical infrastructure sectors across the European Union. It emphasizes resilience, incident reporting, and supply chain security.

Connected blogs:

Navigating the Cybersecurity Maze: Master NIS2 with the help of ISO 27001

Understanding NIS2: supervision and penalties of non-compliance

Access control & MFA in NIS2: Build a solid foundation with ISO 27001 controls

Explore framework collection