ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 ISO 9001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 14001 Product: ISO 27001 Internal Auditor Course
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • ISO 27001 risk management process

    I think you mean ISO 31000:2018 here, right?

  • Audit checklist content

    I need your help concerning the Internal Audit Checklist. Particularly 7.4 point: Does the process for communication related to information security exist, including the responsibilities and what to communicate? Could you please explain it more detail.

  • BCPs content

    I was wondering if you have any seriously created/developed a business continuity plan (with all appendices) for any company (of course without any company name or details). I fully understand, at the end, every company is different. However there are still many disasters, incidents can occur to any company and responses to these incidents may be also very similar for any organisation. If you share with me a good example, it definitely helps me a lot.

  • ISO 27001 requirements and implementation

    I would like to understand the requirements of implementing ISO 27001 into the company I am working for and would like advice on the requirements of this standard, and if there are any methodologies that you can recommend to implement this.

  • Requirement for Policy for Business Continuity

    I have an additional question to the referential documents of the ISMS Policy.

  • Defining scope

    I'm planning to implement ISMS however I'm stuck on the scope. Can you guide me on the creation of ISMS scope?

  • Audit meetings

    When going through the ISO 27001 Auditor training I came across the following statement in the documentation:- complex topics like the opening and closing meetings during an audit have been left out of the training as they are not mandatory and not applicable to small & medium size businesses. My question is what size business does need these meetings is it over a certain number of employees or company turnover?"

  • HR document release

    Is the release of an HR document into an area of general access by staff a non conformance of the HR controls or an incident or is it possibly both?

  • Template content

    Following I will show you where my question comes from:

  • VDA ISA TISAX and ISO 27001

    In Germany there are indeed in the automotive (subcontracting) industry a tailor-made version of the ISO 27001 standard (including Audit / Certification) under the label VDA ISA TISAX.
Page 286 of 544 pages