ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit ISO 9001 Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 9001:2015 ISO27001
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • ISO 27001 and LGPD

    What does ISO 27001 not cover in the LGPD?

  • Appendix 3 – Internal Audit Checklist for ISO 27001

    I’ve just bought your Internal Audit Checklist for ISO 27001. The zip file contains 3 similar documents:

    • Integrated: Appendix 3 – Internal Audit Checklist for ISO 27001
    • Premium: Appendix 3 – Internal Audit Checklist for ISO 27001 and ISO 22301
    • Cloud: Internal audit checklist for compliance with ISO 27001 (main clauses and Annex A), ISO 27017 (main clauses), and ISO 27018 (main clauses)

    I’m implementing ISO 27001 so I’m assuming the ‘Integrated’ version is the one I need to use when auditing that the SoA controls implanted are effective? If you could just clarify what each one can be used for, especially the cloud version, this would be great.

  • Difference between legal and other requirements

    My question is what is the difference between legal and other requirements?

  • Security assurance and Security assessment

    1. Do you respond to Security assurance questions?
    2. Can you provide an exec summary of Security assessment and remedial action?

  • Applicability of A 14.2.2 Change Management for staff augmentation companies

    Can we exclude A 14.2.2 if a company is a bodyshop for other company and the vendor only performs code changes, updations and customizations based on client change management policy.

  • Work Instruction

    I need to write some work instructions. The templates I have found appear to be the same as a procedure. Do the headings for a WI need to be the same as a procedure (purpose, scope, roles and responsibilities, references)?

  • ISO 27001 helping in implementing ISO/IEC 17024

    Can the ISO 27001 Lead Auditor and Lead Implementer courses be useful for implementing ISO / IEC 17024?

  • A6.1.5 Information Security in Project Management

    While preparing the Documentation of ISO 27001, how can we be compliant with the “A6.1.5 Information Security in Project Management”. Kindly explain as the Information Training and Awareness is already a necessary part of members of the Organization. Do we have to maintain any specific Template in every Project in the Company?

  • Offices relocating

    I wanted to ask if there is a resource(article/video) like a checklist in case someone relocates offices regarding ISO 27001/22301.
    Thank you very much.

  • Documentation structure

    You structured your documentation framework with numbers 00 .. 12. Are these numbers related to the ISO or did you choose them by random? So when we build up our own doc structure, would you prefer to keep the numbering?
Page 199 of 544 pages