ISO 27001 & 22301 - Expert Advice Community

ISO 27001 - Cloud Services

 have a question about cloud services:

I've read that we should include in Scope only data for SaaS, or data and application software for IaaS, etc.

Does it mean that we have to write that in our ISMS Scope document, or is it self-explanatory and we just consider that later during Risk Assessment?

About implementing ISO 27001

1 - My situation is that I am an intern at a small company whose servers are in the cloud (***), and they have a website of their own. So my question is implementing ISO27001 would be meaningless for such architecture, if not how should i define the context of the organization in such a case.

2 - Also what sources would help a beginner like me to achieve this implementation of the standard. By the way, I started the course online in advisera titled "ISO 27001:2013 Lead Implementer Course" is it a good start?

ISMS

I am coming near my audit for ISO 27001.  The audit firm will be looking at the information in the image below. Can you please give guidance on how to meet the requirement in the red box?

Document/template used for the context of the organisation in ISO 27001 toolkit

Can you help me with one question, please?

Which document/template is used for the context of the organisation in the ISO27001 toolkit?

Business Continuity Plan - Pandemic

Do we have any policy or template which covers Business Continuity Plan - Pandemic, If please share?

Full Time ISMS Manager

Thank you very much for your responses so far much appreciated. Just a quick question, does a small organisation with lets say 90 staff globally require a full time ISMS manager, or should this role be given on a part-time basis or an ad-hoc basis?

6.2 Information security goals and planning to achieve them

I have a question about the toolkit for ISO27001 (see below): Unfortunately I cannot find a document on the point in the templates
6.2 Information security goals and planning to achieve them

Is there a template for the mandatory document here?