Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Writing ISO 27001 documentation
I have roughly 5 departments. Should I give each department manager the full mandatory documents to fill out? For example, for the first mandatory document, the scope. Should I have a scope for each department or should I have one written by me (project manager), which includes all the departments? Does each department need to write the documents or one for the whole company? If you need more elaboration please feel free to ask. I am still in the beginning of the implementation process so at this point there is still confusion. Please help in clearing things up. Any information on the first steps of the process will be much appreciated. -
Risk assessment and application control practical examples
1. Can we have properly filled out examples (not the easy ones like in the book) of the -
Business continuity strategy, plan, and procedure
i'm really confius here.. what is the difference between BC strategy, BC Plan, BC Procedure. really appreciate if you could provide example or sample as well. -
Business continuity in specific industries
These days a thought is pondering my mind. Its related to Business Continuity Planning. It is easy to understand business continuity planning in sectors like Telecom or Banking, BCP in these sectors is not too hard to achieve. -
Integrated management systems
assuming an organisation already has an iso 9001 certification and decides to implement iso 27001 certification, will you advise the isms to establish its own document control procedures and related records separate from the 9001 certification system? -
Implementation cost
¿cual es el valor aproximado para implementar la ISO 27001 en un centro de apoyo logístico de evaluación en Colombia ? -
Records required in an IT project
What information needs to be store for audits for IT project. My project having functions like register login logout, messaging -
Toolkit list of documents
1- I have two documents, both of which include a checklist of Mandatory Documents required by ISO 27001. However, there are some minor differences. Could you please confirm that the revised 2015 version 3.1 is the newest update and I should disregard the 2013 revision. -
SoA content
Does the SOA need to contain justification for inclusions, and whether they are implemented or not. I was under the impression only the reason for exclusion is required. -
ISO 27001 Annex A checklist
Is there a ISO 27001"2013 Appendix A Verification and Validation procedures that exists. We are going into stage 2 ISO Cert and for future assessments we will be doing need to have those procedures if they exist.