Expert Advice Community

Home / ISO 27001 & 22301 / Risk Treatment Plan and Risk Treatment Process

Guest

Risk Treatment Plan and Risk Treatment Process

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Jan 12, 2016 Last commented:   Jan 12, 2016

Risk Treatment Plan and Risk Treatment Process

ISO 27001 & 22301
According to this article (Risk Treatment Plan and risk treatment process - What's the difference) risk treatment plan have to set a responsible, it is the same responsible for the risk I determined the risk assessment table?
0 0

Assign topic to the user

ISO 27001 RISK TREATMENT PLAN

Determine responsibilities for the implementation of controls.

ISO 27001 RISK TREATMENT PLAN

Determine responsibilities for the implementation of controls.
Guest
AntonioS Jan 12, 2016

 

Answer:

In the risk assessment table do you need to determined the risk owners and the asset owners, and in the risk treatment plan you need a responsible for the execution of all actions. You can have an unique person for all, but it is not my recommendation because they are different things, different steps in the risk management (assessment and treatment), so I think that it will be better if you can separate them.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jan 12, 2016

Jan 12, 2016

Suggested Topics
Guest user Created:   Jan 04, 2022 ISO 27001 & 22301
Replies: 1
0 0

SOA; CONTROL APPLICABLE vs. CONTROL IMPLEMENTED?
Guest user Created:   Jan 27, 2021 ISO 27001 & 22301
Replies: 1
0 0

Questions about ISO 27001 implementation