ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit ISO 9001 Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Product: ISO 27001/Risk Assessment Table Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit AS9100 Product: EU GDPR Documentation Toolkit
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Becoming accredited ISO 27001 auditor or implementer

    How does one become an accredited iso 27001 auditor or implementer to be able to give the certification to other businesses?

  • ISO 27001 Process

    My problem is I am stuck at the Risk Assessment Table and Statement of Applicability stage. 

    With the RAT I think the challenge is getting started the right way: it is a daunting task that requires whole of business input and I suppose I do not feel adequately qualified to guide the process;

    Similarly on SoA I do not feel I can make the call on what is applicable, nor guide the business in the process of discovering this.

    Any guidance you can share would be appreciated and when I have some more specific questions it would be good to organise an hour of power with you (your early morning bearing in mind the time difference).

  • ISO 27001 implementation

    'm responsible for an ISO 27001 implementation on my company. I took some courses to gain knowledge on how to implement the standard, but I still feel insecure to be leading a project so complex.

    In the moment I have a ponderation:

    - Is there other way to go over the process mapping for implementation (involves ISO 38500) or it is an indispensable pre requisite?

  • How safe is a certified company with ISO 27001 and ISO 27701?

    How safe is a certified company with ISO 27001 and ISO 27701?

  • Concern points 4 and 5 of document procedure for document and record

    Good morning, these items refer to the registration of incoming mails that for me the purpose of these processes is not very clear. I would like to understand a little more about the subject. Thanks.

  • Best practice approaches related to the Asset Inventory

    One question, could you please recommend any best practice approaches related to the Asset Inventory when it comes to SaaS accounts we have (shall those be listed in there or not, as we do not actually own the asset/account)?

  • Difference between controls

    I do not understand is the difference between controls to be assigned based on risk assessment (and risk treatment) and controls to be implemented based on Information security policy.

  • ISO for reputation management

    I'm revisiting the question if an ISO exists for reputation management (not to be confused with consumer feedback online review management) please?
Page 100 of 544 pages