ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment ISO 9001 Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001/Risk Assessment Table Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit ISO Product: ISO 27001 Internal Auditor Course
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Review of information systems

    12.8 Review of information systems - I would like to hear your consult and opinion on how and what is required for Review of Information Systems or IT Audit Plan.

  • Recording evidence

    I have a question about the record of the Disaster Recovery Plan (chapter 8). The record talks about "the record of the implementation of the recovery step". Does it mean a record about one step? Or can we describe in this record different steps?

  • Security of suppliers

    En la universidad estoy viendo una materia "Auditoría de Sistemas" donde vemos la norma ISO 27001. Pronto tengo una exposición sobre cómo dar cumplimiento al control A.15 y tengo muchas dudas, me gustaría contar con un poco de ayuda de un experto.

  • Video tutorial content

    1. The video "How to Write ISO 27001 Procedure for Corrective and Preventive Actions" talks about preventive actions. I cannot find this paragraph in the template. 2. The video talks about compatibility with ISO 9001 and ISO 14001 - please provide the applicable clauses in the template, thanks.

  • SOA and Control Objectives

    I have a question regarding the SOA and Control Objectives.
    I was thinking that I should just include the Control Objectives and Controls in ISO27K
    Is this OK or do I need to rephrase the words in case there is a Copywrite issue???

  • Documents for ISO 27001 controls

    The documentation in the package covers all the 114 controls of the Standard?

  • Disaster recovery plan template

    The Disaster Recovery Plan (of the toolkit) hasn’t a section talking about the reference documents. Is that wanted (even if there are relevant sections in the standard (A.17.1.2 und A.17.2.1)?

  • Asset handling in risk assessment

    Thanks for the support and information you are giving us. I am now doing the risk assessment and I have a question for you. So we have different Asset owners and let's say they all have laptops. So do I need to put every laptop and its associated risks, threats, and vulnerabilities or I just categorize it as laptops?

  • Developing multiple Disaster Recovery Plans

    Our company has a complex IT-infrastructure and various RTOs. We, therefore, need separate disaster recovery plans. Are there templates when you need to work more differentiated?

  • Handling of requirements

    What to do with the demands of standard that have long since been overcome. You know what I am thinking.
Page 212 of 544 pages