Explore cyber compliance blogs

Discover a curated collection of blogs covering cybersecurity frameworks, industry updates, and expert tips. Dive into content designed to inform and guide you in mastering compliance and security.

Explore framework collections

Latest articles

05.03.2026

What is ISO 27001 certification and what does the auditor actually do?

What is ISO 27001 certification and what does an auditor actually do? Learn how auditors assess your ISMS, verify compliance, and ensure information security is managed systematically, consistently, and in line with the standard.

ISO 27001 and GDPR: How global standard supports General Data Protection Regulation

Risk management: how other ISMS key areas provide input?

10 most common failures in information security risk management (and how to fix them)

Frameworks

Browse all articles ->

ISO 27001 and GDPR: How global standard supports General Data Protection Regulation

In this blog, we'll quickly go over ISO 27001 standard and GDPR, look at their similarities, and discuss how ISO 27001 can be useful towards GDPR compliance. We will also take a peek to GDPR and ISO 27701 cooperation.

NIS2 in Slovenia: What ZInfV-1 means for your organisation

NIS2 Slovenia compliance guide to Zakon o informacijski varnosti. See scope, management duties, risk controls, incident reporting and steps to implement.

NIS2 in Slovakia: Guide to Zákon o kybernetickej bezpečnosti

NIS2 Slovakia compliance: a practical guide to the Slovakian Cybersecurity Act for security and IT teams

Compliance & Security

Browse all articles ->

Risk management: how other ISMS key areas provide input?

An ISMS only supports risk management if it’s actively used. When processes like incident management, change management, continuity planning, and continuous improvement are run in practice, they continuously generate input.

10 most common failures in information security risk management (and how to fix them)

Find the 10 most common failures in information security risk management and learn how teams can fix them to make risk management practical, decision-driven, and effective in everyday security work.

What is risk management in information security?

Clear, practical explanation of information security risk management, how it connects to security frameworks, and how to make risk-based security work in practice.

ISMS

Browse all articles ->

Streamline ISO 27001 compliance with AI: Building the ISMS baseline

How to use AI to build a tailored ISMS baseline in minutes, and get you to a flying start on ISO 27001 work? By using AI in a controlled way, you won't degrade quality but will save your time on implementing security - not writing documents.

What is an ISMS? A guide to information security management systems

Learn what ISMS is, why it matters, and how to implement an ISMS step-by-step. See how ISO 27001 and NIS2 fit into your information security management system.

ISMS implementation: comparison of documents, wikis, ISMS tools and GRC

There are a few different approaches to building an ISMS. In this post, we’ll compare these different methods, helping you understand which might be the best fit for your organization’s security management needs.

Partner portal

Browse all articles ->

How cyber advisors can scale up without hiring a large team

Growing cyber consultancy doesn't always require adding headcount. With Cyberday, managing multiple customers efficiently is easier and you can deliver consistent results.

What is a vCISO? Understanding the role of virtual CISO

What is a vCISO, what they do, and why the virtual CISO model is growing fast among companies and cybersecurity consultants.

What is a modular cyber security framework and why they are essential for consultants

Modular cyber security frameworks make compliance management easier, and helps consultants scale faster, win more deals, and build recurring revenue.

News and trends

Browse all articles ->

Cyberday AI Assistant, framework comparisons & Mass-editing: Cyberday product and news summary 9/2025 🛡️

This is the September news and product review from Cyberday and also a summary of the latest admin webinar. Read about Cyberday's new AI Assistant, how frameworks compare and what is on development roadmap.

NIS2 delays, healthcare breaches & improved Trust Center: Cyberday product and news summary 5/2025 🛡️

This is the May news and product review from Cyberday and also a summary of the latest admin webinar. Read about NIS2 delays, recent cyberattacks as well as recent and future development on Cyberday.

10 things I wish I knew: Starting your ISO 27001 project on the right track

This post shares 10 key lessons learned from going through an ISO 27001 certification project - from the importance of setting clear goals and managing documentation to the realities of risk management and the value of using the right tools.

Product updates

Browse all articles ->

10 new frameworks available: National NIS2 frameworks, CAF 4.0, Saudi PDPL and more

Cyberday adds Saudi PDPL, CAF 4.0, MSBFS regulations, and NIS2 national laws for Portugal, Slovenia, Slovakia, and Åland. Expand your compliance coverage today.

New global and national frameworks now available in Cyberday

Cyberday adds new frameworks to support global cybersecurity compliance, including the CER Directive, NEN 7510, China Cybersecurity Act, and national NIS2 implementations in 5 countries.

Introducing: Cyberday’s new AI Assistant 🚀

Introduction to the capabilities of Cyberday's new AI Assistant, that will be published inside the app still during this month.

Company updates

Browse all articles ->

Compliance is mission-critical – not a once-a-year project

Our 2025 user survey shows compliance is no longer a once-a-year project. Learn how organizations now treat compliance as mission-critical infrastructure embedded in daily operations.

Cyberday Fall 2025 Round-Up: Navigating growth

Cyberday’s 2025 fall roundup highlights major growth, new AI-powered security tools, expanded compliance frameworks, a new HQ, and key event launches — setting the stage for an ambitious 2026.

Cyberday’s AI "Fast Track" cuts ISMS setup to minutes

We've unveiled Cyberday’s new AI-powered “Fast Track.” It’s built to help organizations meet information security requirements in record time, turning compliance from a paperwork process into real-time assurance.

Framework collections

Explore framework collection

ISO 27001

ISO 27001 is the global standard for establishing, implementing, and maintaining an Information Security Management System (ISMS). This framework helps organizations manage risks to their data security, ensuring confidentiality, integrity, and availability.

Connected blogs:

ISO 27001 and GDPR: How global standard supports General Data Protection Regulation

ISO 27001 and ISO 9001: Differences, how they work together and benefits of combining

Got an ISO 27001 audit interview request - what should I expect?

NIS 2 (Network and Information Security Directive 2)

NIS 2 expands on the original NIS Directive, setting updated cybersecurity requirements for critical infrastructure sectors across the European Union. It emphasizes resilience, incident reporting, and supply chain security.

Connected blogs:

Incident reporting in NIS2: Requirements and related ISO 27001 best practices

Access control & MFA in NIS2: Build a solid foundation with ISO 27001 controls

HR security in NIS2: Best practices for compliance

Explore framework collection