Expert Advice Community

Home / ISO 27001 & 22301 / Control justification on SoA

Guest

Control justification on SoA

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Dec 08, 2017 Last commented:   Dec 08, 2017

Control justification on SoA

ISO 27001 & 22301
I have additional question. Is “Justification for selection/non-selection” column mandatory or voluntary to use?
0 0

Assign topic to the user

ISO 27001 STATEMENT OF APPLICABILITY

List all controls and determine which are applicable and why.

ISO 27001 STATEMENT OF APPLICABILITY

List all controls and determine which are applicable and why.
Expert
Rhand Leal Dec 08, 2017

Answer: The justification for control selection/non-selection is mandatory by ISO 27001 (clause 6.1.3 d)).

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Dec 08, 2017

Dec 08, 2017

Suggested Topics
Guest user Created:   Jun 01, 2020 ISO 27001 & 22301
Replies: 1
0 0

SoA’s justification for the selection of control
Guest user Created:   May 03, 2020 ISO 27001 & 22301
Replies: 1
0 0

SoA justification for selection (of control)
Gerry Created:   Sep 18, 2023 ISO 27001 & 22301
Replies: 2
0 0

Risk Treatment Advice