ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 ISO 9001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 14001 Product: ISO 27001 Internal Auditor Course
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • BCP/BIA templates

    I have purchased the ISO 27001 toolkit, looking currently for the BCP/BIA one.

  • ISO 27001 and ISO 22301 communication plan

    I am busy with ISO 27001 and 22301 audits, and the auditor is asking for a Communication Plan and I can’t find one. Do you have a template for a ISO/security Communication Plan?

  • Compliance with ISO 27001 and GDPR

    „This Policy and the entire ISMS must be compliant with legal and regulatory requirements relevant to the organization in the field of information security, as well as with contractual obligations.“ - requirement in the Information Security Policy.

  • Risk Management and BCM

    Do you have an example of any organization structure for BCM ? What is the role of Risk Management team during catastrophe event, is it just a part of crisis management team, and also monitoring the implementation of BCP, coordinating with Emergency Response and Damage Assessment team, or anything else?

  • BIA and risk analysis

    In the BCP Phases we found, Phase 2: Perform Risk Analysis and Phase 3 : Perform BIA . Is it mandatory to start with risk analysis or can we start with BIA then go to risk analysis. What is the best way ?

  • Certification ISO 27001

    A company that already has the ISO 27001 each time it is submitted to an evaluation to keep it. I work for a company that wants to be licensed in ISO 27002, 27001 and 27000 assuming the company achieves that every time we submit to an inspection to continue keeping that ISO ?

  • Questions to top management

    What are the top questions the auditor can ask to the top of information security management ? 10 questions needed.

  • Customer-facing Acceptable User Policy

    I’m looking for a customer-facing AUP (for cloud IaaS/SaaS) customers. I don’t see something like this in the kit. Am I mistaken in thinking this was in the kit?

  • Reports Date

    The report Date must be the same of the last day of Internal audit period that the process took? I mean if I did the internal audit of a control was: from 12/12/18 to 19/12/18, the report date must be same day that it ends? like 19/12/18 or I can do it later and write the report in a different date like 18/01/19.

  • Scope template

    I am in the process of creating my scope – are there any example ISO 27001 scopes I could have a look at?
Page 258 of 544 pages