ISO 27001 tips for hybrid companies