Explore cyber compliance blogs

Discover a curated collection of blogs covering cybersecurity frameworks, industry updates, and expert tips. Dive into content designed to inform and guide you in mastering compliance and security.

Explore framework collections

Latest articles

18.08.2025

Who does Säkerhetsskyddslagen apply to? 🇸🇪 Scope and applicability

Discover who must comply with Säkerhetsskyddslagen, Sweden's Protective Security Act. Learn scope, criteria, and compliance steps for security-sensitive sectors.

What is Säkerhetsskyddslagen? 🇸🇪 Introduction to requirements

How to comply with Säkerhetsskyddslagen? 🇸🇪

What does Säkerhetsskyddslagen require? 🇸🇪

Frameworks

Browse all articles ->

Who does Säkerhetsskyddslagen apply to? 🇸🇪 Scope and applicability

Discover who must comply with Säkerhetsskyddslagen, Sweden's Protective Security Act. Learn scope, criteria, and compliance steps for security-sensitive sectors.

What is Säkerhetsskyddslagen? 🇸🇪 Introduction to requirements

Säkerhetsskyddslagen is a Swedish regulation for protecting country's national security. Learn key requirements, compliance steps, and benefits of this security framework now!

How to comply with Säkerhetsskyddslagen? 🇸🇪

Comply with Säkerhetsskyddslagen to protect Sweden's national security. Follow our guide to manage risks and ensure legal compliance effectively.

Compliance & Security

Browse all articles ->

What is Statement of Applicability (SoA) in ISO 27001?

In this blog, we'll cover the main purpose and benefits of a well-working Statement of Applicability document. We'll also explain why SoA is important, and 4 key roles it can play in information security work.

Why is ISO 27001 compliance now more important than ever?

Year after year, ISO 27001 standard has remained one of the gold standards for information security. The global standard has remained relevant, but where did ISO 27001 originate? And why is it's popularity just going up?

10 most common non-conformities in ISO 27001 audits

Audits and non-conformities drive organizations toward continuous improvement. But before your first ISO 27001 certification, it's good to be aware of some most common non-conformities, so you can avoid these in your certification audit.

ISMS

Browse all articles ->

What is an ISMS? A guide to information security management systems

Learn what ISMS is, why it matters, and how to implement an ISMS step-by-step. See how ISO 27001 and NIS2 fit into your information security management system.

ISMS implementation: comparison of documents, wikis, ISMS tools and GRC

There are a few different approaches to building an ISMS. In this post, we’ll compare these different methods, helping you understand which might be the best fit for your organization’s security management needs.

Spreadsheet vs. ISMS tool - top 10 reasons why a tool is better than the traditional way

Discover the top 10 reasons why agile tools outperform traditional spreadsheets in managing cyber security compliance, from centralized management to continuous improvement.

Partner portal

Browse all articles ->

What is a vCISO? Understanding the role of virtual CISO

What is a vCISO, what they do, and why the virtual CISO model is growing fast among companies and cybersecurity consultants.

What is a modular cyber security framework and why they are essential for consultants

Modular cyber security frameworks make compliance management easier, and helps consultants scale faster, win more deals, and build recurring revenue.

End of hourly billing: why value-based pricing works for compliance consultants

Hourly billing is fading fast in compliance consulting. Learn why value-based pricing better aligns incentives, boosts earnings, and how compliance consultants can transition effectively.

News and trends

Browse all articles ->

NIS2 delays, healthcare breaches & improved Trust Center: Cyberday product and news summary 5/2025 🛡️

This is the May news and product review from Cyberday and also a summary of the latest admin webinar. Read about NIS2 delays, recent cyberattacks as well as recent and future development on Cyberday.

10 things I wish I knew: Starting your ISO 27001 project on the right track

This post shares 10 key lessons learned from going through an ISO 27001 certification project - from the importance of setting clear goals and managing documentation to the realities of risk management and the value of using the right tools.

Framework recap, US security & and role management: Cyberday product and news summary 3/2025 🛡️

The March product and news update presents updates to role management and the new Trust Center, a review of the key frameworks for 2025 and US security.

Product updates

Browse all articles ->

12 new NIS2 national frameworks now live + critical infrastructure law for Belgium

Cyberday adds 12 new national NIS2 frameworks and Belgium’s critical infrastructure law. See how the update helps you stay compliant with local cybersecurity laws across European countries.

Information security risk management in Cyberday: Identifying risks, evaluation, treatment and closure

Every cyber security framework highlights risk management in its own way. We summarize in this post, what's essential in information security risk management and what kind of an approach Cyberday offers for it.

Company updates

Browse all articles ->

Cyberday app outage on Tuesday 10/6/2025: Explanation and follow-up

This message goes through the details of the recent incident that produced downtime in Cyberday during 10.6.2025, and related early mitigation.

Kicking Off a Summer of Innovation at Cyberday

This summer, Cyberday is proud to launch an ambitious and inspiring project centered on deep regulatory research and international collaboration. We’ve welcomed 12 talented information security students, who will work together to simplify compliance.

Recognising growth: move to new offices with Cyberday!

Join the Cyberday team when it's time to upgrade to a bigger office space. Read about the highlights of the autumn, and let's reflect together on how growth and physical security can shape the workspace.

Framework collections

Explore framework collection

ISO 27001

ISO 27001 is the global standard for establishing, implementing, and maintaining an Information Security Management System (ISMS). This framework helps organizations manage risks to their data security, ensuring confidentiality, integrity, and availability.

Connected blogs:

How do you benefit from ISO 27001 certification?

Got an ISO 27001 audit interview request - what should I expect?

Why is ISO 27001 compliance now more important than ever?

NIS 2 (Network and Information Security Directive 2)

NIS 2 expands on the original NIS Directive, setting updated cybersecurity requirements for critical infrastructure sectors across the European Union. It emphasizes resilience, incident reporting, and supply chain security.

Connected blogs:

NIS2 Overview: History, key contents and significance for top management

Understanding Physical Security in Cybersecurity: Insights from ISO 27001 and Best Practices

NIS2 national implementation: Which countries are available in Cyberday?

Explore framework collection