ISO 27001 implementation
I am making steady progress on our ISO27001 project using the Advisera toolkit, support & guidance.
I have completed the 4 implementation phases (Mgmt support, Prepare project, Identify requirements & design Scope, Mgmt intention & responsibilities) and about to enter the perform risk management stage.
With regards to the risk management phase, we have a mandatory requirement to comply with ISO27005.
Need Advisera feedback if the toolkit for ISO27001 purchased by us will help comply with ISO27005 as well.
Assign topic to the user
The Risk Assessment and Risk Treatment Methodology template included in your toolkit are compliant with ISO 27005.
Please note that ISO 27005 is a supporting standard to ISO 27001, detailing how to implement risk management for information security (basically covering ISO 27001 clauses 6.1.2 and 6.1.3).
This article will provide you a further explanation about implementing risk management:
- ISO 27001 risk assessment & treatment – 6 basic steps: https:// advisera.com/27001academy/knowledgebase/iso-27001-risk-assessment-treatment-6-basic-steps/
Comment as guest or Sign in
May 04, 2021