ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit ISO 9001 Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 9001:2015 ISO27001
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Adding new control to SoA after audit

    hi can I add a new control to SoA after certification and before surveillance audit

  • Sending personnel data from UK or Europe for analysis.

    Hello.
    I am hoping to offer a service to UK /European organisations to help them identify areas of bias and inequalities particularly in the areas of gender pay and advancement and pay gaps relating to ethnicity and disability.

    I am speaking to a US company who could process the data for the results I want with their Artificial Intelligence.

    What would be the steps necessary to ensure that both the transmission and processing would be compliant in every regard?

  • Purchase persuasion

    How to persuade leadership to purchase

  • ISO 22301 Compliance Matrix

    What I need is the ISO 22301 compliance matrix, to identify the Implementation Guide. If possible, complete ISO 22301 standard.

  • Risk analysis

    I am currently managing the quality department of a medium size company. xx employees, xx sites.  We are ISO 9001, 14001, 27001 and eIDAS certified.
    We are currently using excel to do our different risk analysis.  Quite efficient... but not really user friendly.   For the last couple of months, I have been trying to find out if anyone would have thought of something more dynamic.  Without much success I must admit.

    Would you mind advising if you ever came across a solution dedicated to risk analysis ?  One that could be implemented in small businesses, practicable, affordable, not requiring 10 consultants working weeks on it to implement it ?

    Any advise would be welcome.

  • CIA, Privacy and risk management

    How CIA Triage And privacy severity of the asset (Asset Value) to be aligned along with Impact & Probability in risk management?

  • Justification for selection a control

    I know that generally the Justification for selection a control can be a risk, Top management solution, or legal requirement.

    Can Justification also be "Best practices in IT", or "IT Management decision"? Or it must be one of the 3 mentioned above?

    Thank you!

  • Defining scope

    Thanks for this. Is there any where that I can get this information online while waiting for your webinar?

    I have an urgent need to define the scope for one of my potential client but I can not wait until your webinar on the 16 Dec.

    Appreciate if you can share some on-line references for the similar topic.

  • ISO 28000 growth

    I noticed from the Advisera blog that there had been a significant increase in the numberof organisations certifiying to ISO 28000 (Information Security in Supply Chain).  Does anyone know why this might be? II've filed this under ISO 27001 as that's the closest standard, I think)

  • ISO 27001 certification

    1. How long can the background preparation stage for ISO 27001 Certification take?

    2. Can I make my own assessment in this regard without consulting the policies, regulations and expectations of the company directors?
Page 126 of 544 pages