ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit ISO 9001 Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 9001:2015 ISO27001
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Plan for Training and Awareness

    Does it make sense to include the Confidentiality Agreement and the Declaration of the acceptance of isms documents in the Plan for Training and Awareness? As an awareness action?

  • Retention period - Training and awareness plan

    Would you mind telling me what the average retention time of such plan is? The template says: "This document must be kept for [number] of years

  • Documents and records management

    Hi, we've achieved ISO 27001, we are in our second year. I'm struggling with how to organize all the evidence, records, documents so I can access them quickly especially when an external auditor comes. Any suggestions?

  • Review of information systems

    12.8 Review of information systems - I would like to hear your consult and opinion on how and what is required for Review of Information Systems or IT Audit Plan.

  • Recording evidence

    I have a question about the record of the Disaster Recovery Plan (chapter 8). The record talks about "the record of the implementation of the recovery step". Does it mean a record about one step? Or can we describe in this record different steps?

  • Security of suppliers

    En la universidad estoy viendo una materia "Auditoría de Sistemas" donde vemos la norma ISO 27001. Pronto tengo una exposición sobre cómo dar cumplimiento al control A.15 y tengo muchas dudas, me gustaría contar con un poco de ayuda de un experto.

  • Video tutorial content

    1. The video "How to Write ISO 27001 Procedure for Corrective and Preventive Actions" talks about preventive actions. I cannot find this paragraph in the template. 2. The video talks about compatibility with ISO 9001 and ISO 14001 - please provide the applicable clauses in the template, thanks.

  • SOA and Control Objectives

    I have a question regarding the SOA and Control Objectives.
    I was thinking that I should just include the Control Objectives and Controls in ISO27K
    Is this OK or do I need to rephrase the words in case there is a Copywrite issue???

  • Documents for ISO 27001 controls

    The documentation in the package covers all the 114 controls of the Standard?

  • Disaster recovery plan template

    The Disaster Recovery Plan (of the toolkit) hasn’t a section talking about the reference documents. Is that wanted (even if there are relevant sections in the standard (A.17.1.2 und A.17.2.1)?
Page 211 of 544 pages