Information Asset Register
How crucial is the creation and ongoing management of the Information Asset Register in obtaining ISO 27001 certification?
Assign topic to the user
An Information Asset Register is mandatory for ISO 27001 certification only if you have relevant risks or legal requirements (e.g., laws, contracts, regulations, etc.) demanding the implementation of control A.8.1.1 Inventory of assets.
In case such situations do not occur, then the Information Asset Register is not required for ISO 27001 certification.
This article will provide you a further explanation about the asset register:
- How to handle Asset register (Asset inventory) according to ISO 27001 https://advisera.com/27001academy/knowledgebase/how-to-handle-asset-register-asset-inventory-according-to-iso-27001/
Comment as guest or Sign in
Oct 20, 2020