ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment ISO 9001 Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001/Risk Assessment Table Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit ISO Product: ISO 27001 Internal Auditor Course
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Is ISO 27001 applicable to community non-profit with regards to ensuring continuity?

    Would this standard be applicable to a community non profit with regards to ensuring continuity?

  • Intermediary device security

    I am new to the ISO 27000 series, and I would like to know where I will be able to find intermediary device security requirements In order to adhere to the ISO standards.

  • Including WFH or teleworking in audit plan

    problem statement: an external auditor company did not include WFH or teleworking in their audit plan, but the company had already implemented an "ad hoc" WFH during this pandemic without consultation with employees and without government regulatory approval.

    1 - can external auditor still considered this compliant and an ISO/IEC 27001 certification be awarded to the company?

    2 - is there such thing as partial certification?

  • Details about Documents Assets

    I need details on documents assets. Do we consider the employee information spreadsheet also an information asset? Or is just the agreements, contracts etc, which are considered as assets? Please clarify.

  • ISO documentation

    When the organisation is certified with ISO9001 and 27001, and have all the required policies in place. Now that we are in a pandemic what are the documentation changes we need to make in order to accommodate changes like work from home, health and safety etc.

  • Asset movement register

    I want to make an asset movement register, but not getting a perfect idea of how I can make it? do we have any format! My only requirement is , in my company when some asset like laptop need to move on another department so that in such cases what register we need to made.

  • Root cause analysis and corrective action plan

    When we get ourselves checked for surveillance of ISO 27001 standard, we do receive non-conformities. We perform a root cause analysis and corrective action plan for the non-conformities and work to conform them. I would like to know if you have a template to perform the root cause analysis like the fishbone method etc.

  • Is ISO 27001 relevant for clinical data management?

    Is ISO 27001 relevant for clinical data management?

  • Audit and Risk Management

    I'm in the process of an audit for license and patch management for an internal audit...Which documentation is needed for such audit process?
Page 138 of 544 pages