Wayne Armstrong

Senior Information Security Consultant and Consultant Manager at URM

Wayne is a Senior Information Security Consultant and Consultant Manager at URM with over 30 years’ experience in IT, information security and risk management.  He has attained and maintained CISSP, CISMP, PCIRM, and CISA qualifications and is a Qualified Security Assessor (QSA) for the Payment Card Industry Data Security Standard (PCI DSS).  Wayne is also an accredited trainer of the BCS Certificate in Information Security Management Principles and the Practitioner’s Certificate in Information Risk Management courses.  Since joining URM as Senior Consultant in 2012, Wayne has been involved in over 50 ISO 27001 certification and PCI DSS compliance projects across a range of market sectors and is one of the UK’s most proficient IS practitioners.

A Guide to the Certificate in Information Security Management Principles (CISMP)
Common Pitfalls Identified in Organisations Seeking ISO 27001 Certification
Lessons Learnt from Early ISO 27001:2022 Transitions
The Timeline for Transitioning to ISO 27001:2022
Transitioning to ISO 27001:2022
Top Tips For Implementing an Effective ISO 27001 Information Security Management System (ISMS)
ISO/IEC 27001:2022 Key Changes
InfoSec Insider
Season
1
, Episode
17
Wayne Armstrong

Mistakes to Avoid When Implementing & Maintaining an ISO 27001 ISMS

In this episode of InfoSec Insider, Wayne Armstrong, Senior Consultant at URM, breaks down the common mistakes and challenges organisations come up against on both sides of their certification assessment, i.e., before the external assessment when the Information Security Management System (ISMS) is first being implemented, and after certification has been achieved and the ISMS is being maintained.  Wayne leverages his 30+ years of experience in information security and risk management to discuss:

  • The mistakes he frequently sees organisations make when implementing ISO 27001 and preparing to certify
  • The common mistakes organisations make in maintaining their ISMS and ISO 27001 certification
  • New common pitfalls he has seen regarding organisations’ implementation of the 2022 version of the Standard
  • Challenges and mistakes that organisations from particular industries and sectors should look out for.
Learn more about this topic
InfoSec Insider
Season
1
, Episode
3
Wayne Armstrong

Certificate in Information Security Management Principles (CISMP) Training Course Explained

In the episode of InfoSec Insider Wayne Armstrong, Senior Information Security Consultant at URM, discusses the Certificate in Information Security Management Principles (CISMP), a BCS managed, foundation-level information security qualification.  Drawing upon his 30+ years’ experience in IT, information security and risk management, Wayne discusses:

  • What the CISMP is
  • What is covered in the CISMP curriculum
  • Who the CISMP is for and the benefits they could reap from sitting a CISMP course/exam.
Learn more about this topic