Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Business Continuity coordinator
Normally who is chosen to be the BC Coordinator during the implementation? Is it the person writing the documents and planning the projects or is it a facilities manager? -
Information security behaviour evaluation
1 - I am a graduate student in information security. I want to examine the behaviour of employees in the field of information security in the organization. For this purpose, I intend to use the ISO 27001 standards for evaluation. I did a lot of research in this field but unfortunately I could not get the right answer and I would ask you to guide me in this area. Now, my question is: can one assess the behaviour of an employee in terms of observing the security principles, such as "not submitting the organization's information on social networks", and so on, using ISO standards? Or are these standards only applicable to the assessment of organization information security at a higher organizational level? -
BIA Questionnaire
Hello, I’m hoping you could help me with a question regarding the BIA questionnaire. -
Selection of controls
We have done the risk assessment and I am working on the Statement of Applicability. We want to include EU DGPR in our company, but I am a bit insecure in how we shall do this in the most effective way. -
Template comment
What does the tekst in the remark mean? Text: "The document header contains organization name and *confidentiality* *level*. The footer contains document name, current version and date of document, and number of pages. Comment (for bold words): Delete if under ISO 27001 the Statement of Applicability excludes control 8.2.1 -
ISO 27001 certification
1 - What would be the procedure to get ISO certified on a WordPress website? -
Video tutorial content
In the Advisera video on #110 Document Control Procedure the actual document from the toolkit looks different from the one shown in the video. Does this mean that the videos are not quite up to date? How do I handle these differences because they already had me searching for explanations or documents that are not there, like “Policy for handling classified information”. -
Template content
I am in process of filling the ISMS Training and Awareness Plan Template and there is no online training. Is it possible for you to share a completed template please? -
ISO 27001 and NIST
I am about to join a company as the IT security person. Thus, I would like to implement NIST framework inside the company but I am not sure how much your solution (ISO27001 Documentation Toolkit) can help me to do so. I dont have the experience in implementing of ethier one, NIST and ISO27001. -
ISO 27001 foundations course
I am more of an ERP application security administrator. Slowly trying to switch gears into Cyber Security side of things. Given my background do you see any advantage for me to take the ISO 27001 Foundations. I am already CISSP certified.