ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 ISO 9001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 14001 Product: ISO 27001 Internal Auditor Course
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Policy structure and documentation

    Is there any recommended way to document a policy? lets say, when developing a Mobile Device and Teleworking Policy, one should ensure following elements are defined for each policy:

    Policy Statement / Purpose

    Scope

    Objectives

    Reference

    Document history

    Date released and by who

    Date reviewed and by who

    Date approve and by who

    Definations

     

  • Security levels to have in the company

    What are the security levels to have in the company, type initial, medium, advanced? We are implementing information security in the company, and I need to know and understand how the security levels work and what do I need to have to reach each level? Can you help me with information?

  • Defining Scope

    How to define The ISO27001 Scope. I'm working for a hybrid company (~300 employees), 8 global locations, we offer cloud management services, and it's difficult to properly define the Scope.
    What should be included in the Scope?

  • Information security in project management

    I was wondering what information security in project management means practically. I am thinking that information should be protected by ensuring least privileged access rights, physical access security, etc - would this be a correct analysis of this control please?

  • ISO 27001 Lead Auditor course

    Hello. I am an IT Auditor on my previous job and currently i am a security compliance. I want to take CISA then after passing, i will take ISO 27001 Lead Auditor. Do you think this two certifications are good? or should I take ISO 27001 Lead Auditor certification only? I just want to hear comments from the expert. :) In addition, I want to focus my career path on audit but on the side of security.

  • Integrated implementation of ISO/IEC 27001:2018, ISO 9001:2015 and ISO 22301:2012

    can you please advise on what is involved in doing an integrated implementation of ISO/IEC 27001:2018, ISO 9001:2015 and ISO 22301:2012?

     

  • Security levels to have in the company

    Quais são os niveis de segurança para se ter na empresa, tipo inicial, medio, avançado?
    Estamos implantando a segurança da informação na empresa, e preciso saber e entender como funciona os niveis de segurança e o que preciso ter para alcançar cada nivel?
    Consegue me ajudar com informação?

  • BCP Framework following ISO 22301

    I need to craft out the BCP Framework following ISO22301 standard for critical IT systems, how do go about doing that?

  • Certified ISO auditor in the US

    I have an easy question for you. I am new to ISO anything. I like the way the framework is laid out. I have heard this framework (ISO 27000) is primarily used in Europe. I know ISO was started as a British standard, but is there a need to be a Certified ISO auditor in the US? Are American companies using or have to be certified under ISO? Since I live in the US, I am just wondering if it will help my career to take training and get certified.

  • ISO 27001 implementation

    How to install and what roadblocks they have experienced that delayed, or stopped, implementation
Page 161 of 544 pages