ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment ISO 9001 Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001/Risk Assessment Table Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit ISO Product: ISO 27001 Internal Auditor Course
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • ISO 27001 certification

    Cuales son los requisitos para que una empresa tenga esta certificación.?

  • Understanding Context of the Organization and determining scope for Implementation of ISO 27001:2013

    1. How to understand Context of the Organization

    2. and determine scope for Implementation of ISO 27001:2013

  • Vendor Reviews

    I work for ***, which provides software and services to help companies do webinars. I'm trying to figure out if certain companies that we use their services need to be on our Vendor Log, and if we need to perform periodic vendor reviews for them, etc. It is clear to me that our Key Vendors and all vendors who interface with our software would need to be included. But what about companies like ***, who helps us manage our social accounts? It is not clear to me where the line is in cases like this.
    Thanks very much.

  • Integrating ISO27001, ISO20000 and ISO9001

    Trust you are well. My company is looking to implement an integrated management system with ISO27001, ISO20000 and ISO9001. We already have begun ISO27001 using the toolkit purchased from Advisera.

    How do I begin integrating the other two ISO standards?

    Is there a procedure that I can follow?

    Can some of the ISO27001 mandatory documents be used for the other standards?

  • FCS security governance critical success factor

    What measure indicate me a risk of failure on governance ISMS , for example
    The number of communications from board of directors relating to information security or % of board meetings that did not address security issues
    what else can i indicate , thank you

  • Question about mandatory documentation

    in the White paper: Checklist of Mandatory Documentation Required by  ISO/IEC 27001 (2013 Revision) the Supplier Security Policy is market mandatory, but List_of_documents_ISO_27001_ISO_22301_Premium_Documentation_Toolkit_EN.pdf marks only A.15.2 Security Clauses for Suppliers and Partners mandatory? Am I reading this right? My customer wants combine Supplier Security Policy to another document and that’s why I’m asking.

  • Queries on ISO22301, BCM

    Seeking your help on below specific questions. Please respond to below queries:-

    1) Difference between keywords 'resume' and 'recovery' w.r.t ISO22301.
    2) Difference between RTO and MAO as per ISO 22301. I have read the definitions as per the standard but it looks like both are same and just the difference between wording is there in their definition. Please give a detailed response as these are very confusing. Also, is MAO >= RTO always?
    3) Difference between Crisis Management plan and BCP and relation between them
    4) Difference between crisis, disaster and incident along with examples
    5) Difference between Resiliency and Business Continuity/BCM
    6) Difference between BCP and BRP ( Business Resumption plan)
Page 133 of 544 pages