Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Question about ISO 27001 and ISO 27017
Does a company have to have ISO27001 as well as ISO27017 or can it have just ISO27017?
-
Coaching
1) Can ISO 27001 be implemented by a person who is not an expert on the subject of IT system, (I will be the only one and I am Chemist) but who has previously implemented ISO 22000.
2) According to the fact that I am not an expert in information technology, which package is recommended to buy: 797, 1200 or 2000?
-
Risk and control self assessment
Do you have any information on the risk and control self assessments? Procedure?
-
Finding ISO 27017/18 content
We have purchased the toolkit 27001 incl. 27017 and 27018 from you.
We now have a question about this.
We cannot find any sample documents or templates in your tool kit for any of the following points:ISO 27017
[Clauses on Service Agreements with cloud providers] in CLD.6.3.1
ISO 27018
[User Data Privacy Protection Agreement Guidelines] in A.1.1
[Security Requirements Specification] in A.4.1Can you kindly tell us which of your documents contain these points or where we can find references to them?
-
How to align current policies with ISO27001
Dear all,
I hope you are all well.
Im hoping someone can point me in the rght direction. We currently have a set of policies that include things like:
- Backup
- Mobile devices
- Encryption
-Information security
-Network security
-Change management
How would i start going about aligning these with ISO27001? Is there a process i can follow?
Any help greatly appreciated.
Many thanks
-
Question about Annex 6.1
I came across a problem
There is no document to mentioned Annex A 6.1 Internal organization instead of A6.1 Bring your own Device under folder 08_Annex_A_Security_Controls
Would you please give us some suggestion