ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit ISO 9001 Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Product: ISO 27001/Risk Assessment Table Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit AS9100 Product: EU GDPR Documentation Toolkit
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Coaching

    1) Can ISO 27001 be implemented by a person who is not an expert on the subject of IT system, (I will be the only one and I am Chemist) but who has previously implemented ISO 22000.

    2) According to the fact that I am not an expert in information technology, which package is recommended to buy: 797, 1200 or 2000?

  • Risk and control self assessment

    Do you have any information on the risk and control self assessments? Procedure?

  • Finding ISO 27017/18 content

    We have purchased the toolkit 27001 incl. 27017 and 27018 from you.
    We now have a question about this.
    We cannot find any sample documents or templates in your tool kit for any of the following points:

    ISO 27017

    [Clauses on Service Agreements with cloud providers] in CLD.6.3.1

    ISO 27018

    [User Data Privacy Protection Agreement Guidelines] in A.1.1


    [Security Requirements Specification] in A.4.1

    Can you kindly tell us which of your documents contain these points or where we can find references to them?

  • How to align current policies with ISO27001

    Dear all,

     

    I hope you are all well.

    Im hoping someone can point me in the rght direction. We currently have a set of policies that include things like:

    - Backup

    - Mobile devices

    - Encryption

    -Information security

    -Network security

    -Change management

     

    How would i start going about aligning these with ISO27001? Is there a process i can follow?

    Any help greatly appreciated.

    Many thanks

     

  • Question about Annex 6.1

    I came across a problem

    There is no document to mentioned Annex A 6.1 Internal organization instead of  A6.1 Bring your own Device under folder 08_Annex_A_Security_Controls

    Would you please give us some suggestion

  • Business continuity policy and objectives

    Recientemente ***, VP de ***, a solicitud nuestra, adquirió el Paquete de documentos sobre ISO 22301 español (con soporte experto) a través del pedido No. *** .Tuvimos noticias de este servicio cuando participamos en un webinar impartido por ustedes recientemente. Gracias por el buen producto que nos han suministrado. En este momento, estamos trabajando en el documento Política de Continuidad del Negocio y queremos plantearles lo siguiente:

    Observamos que la plantilla (template) que proponen no contiene un postulado específico o declaración de política, como ocurre por ejemplo en el caso de la ISO 9001-2015. Asimismo, en el contenido del título Definición de objetivos de continuidad del negocio, no se definen o muestran ejemplos de estos objetivos, sino que refiere a un documento interno que no está dentro de las plantillas suministradas. 

    ¿Pueden por favor facilitarnos modelos escritos para la declaración de política de continuidad del negocio y de objetivos específicos de continuidad del negocio?
Page 131 of 544 pages