Nekategorizirano - Nimbis d.o.o.

Zakaj zapisano še ni delujoče – Operativna varnost in ZInfV-1

Why Written Is Not the Same as Working: Operational Security and ZInfV-1

by nimbis | 13.04.2026 | Nekategorizirano

There is a moment in most security programmes where the hard work of building gives way to the assumption that everything is now working. Policies have been written. Controls have been implemented. Suppliers have signed agreements. The risk assessment is done. The certification is in sight.

Ljudje in viri za programom: Podporna infrastruktura za ZInfV-1 skladnost

The People and Resources Behind the Programme: Support Infrastructure for ZInfV-1 compatibility

by nimbis | 07.04.2026 | Nekategorizirano

A security programme can have the right policies, the right controls, and the right risk assessment — and still fail operationally. The failure point is almost always the same: the people who are supposed to operate the programme don't have the skills, the resources, the information, or the tools to actually do so.

Kar niste prepoznali, ne morate upravljati: Ocena tveganja in ZInfV-1

You Can't Manage What You Haven't Mapped: Risk Assessment and ZInfV-1

by nimbis | 31.03.2026 | Nekategorizirano

Security budgets get spent every year. Controls get implemented. Policies get written. And organisations still get breached, still miss incident notification deadlines, and still find themselves unable to demonstrate to a regulator that their measures are proportionate.

Kdo je odgovarja za varnosti v vaši organizaciji? Zavezanost vodstva in ZInfV-1

Who Owns Security in Your Organisation? Leadership Commitment and ZInfV-1

by nimbis | 23.03.2026 | Nekategorizirano

When an information security programme fails — when a breach goes undetected for months, when an incident notification deadline is missed, when a certification audit exposes gaps that should have been closed years ago — the root cause is almost never a technical one. The firewall was probably adequate. The policy probably existed. The problem was that nobody with real authority ever made security a genuine priority.

Kontekst organizacije je predpogoj za varnost – in za skladnost z ZInfV-1

Organisation Context Is the Precondition for Security — and ZInfV-1 Compliance

by nimbis | 16.03.2026 | Nekategorizirano

If you ask the head of security in any Slovenian organization whether they have an information security program in place, most will answer yes. If you ask them to describe the actual threats their organization faces — by sector, supply chain...

ISO 27001 in ZInfV-1: Temelji informacijske varnosti, ki jih potrebuje vsaka organizacija

ISO 27001 and ZInfV-1: The Information Security Foundations Every Organisation Needs

by nimbis | 10.03.2026 | Nekategorizirano

V svetu, kjer je kibernetska varnost postala strateška prioriteta — ne le IT-jevska skrb — se dve vprašanji znova in znova pojavljata na mizah vodstvenih ekip: “Kaj dejansko moramo narediti?” in “Kako vemo, da je dovolj?” Standard ISO/IEC...