Inspiring trust for a more resilient world.

ISO/IEC 27001:2022 Transition Part 3: Root Cause Analysis Tools for an ISMS

Date: Thursday March 23, 2023 

Time: 2:00PM - 3:00PM ET 

About this event

When it comes to an information security breach, it’s not a matter of ‘if’, it’s a matter of ‘when’. How your organization responds in the aftermath of a security breach determines whether the incident is a hiccup or the end of an organization. As  with all ISO Standards, conducting a cause analysis is not only required, it’s the most important tool you can use to determine the cause and strengthen as many weaknesses as possible. A well-executed root cause analysis can reduce the lingering impact of the incident and lower the probability of future breaches.

We’ll look into how to create a ‘process approach’ that you can use to uncover the cause of an information security breach and make your Information Security Management System stronger and get you better prepared for the next one.

During this educational webinar, you will learn:

The Ishikawa Fishbone RCA method and how it lines up with Annex A

  • What are the linkages?
  • How are these links beneficial to us?
  • Why might this awareness make it easier to get to the real cause?

How can we use this model to identify contributing issues?

  • When should we do a root cause?
  • How much is ‘enough’ when it comes to investigation?
  • Matching potential causes to the Controls in Annex A

After we’ve discovered a potential cause

  • Implementing the corrective action to minimize risk
  • Reviewing the solution for effectiveness
  • Reassessing our risk identification, analysis and assessment to look for weaknesses – could we have avoided this breach with better risk identification?

You can never eradicate all threats, but a good root cause analysis will fuel your risk management activities so you can strengthen your Information Security Management System and sleep better.

Join us on March 23, 2023 at 2:00 PM ET for our educational webinar.



Jim Moran, MA Ed. MSP

Training Instructor, BSI Group



Vanessa Zamora

Marketing Manager, BSI Group Canada


Please register for this meeting by providing the information requested. You will receive confirmation of registration soon after completion. 

Thank you for your interest in our webinar.


I have read the BSI Privacy Notice and consent to the processing of my personal data