Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
ISO 27001 applicability
Tengo una pergunta el ISO 27000 y sus anexos se pueden integrar en un procedimiento de optimizacion de equipos de computo o solamente se integra para seguridad de datos? -
Audit questions
We are an Information security company. Of recent , we have been get RFP for IT Audit. I just wanted to know -
ISO 27001 benefits
Do you have some good examples on lowering expenses? real expenses? ROSI never worked :-) -
Risk Assessment and Risk Treatment template
1 - Please let me know what is the difference in 3 different risk assessments and treatment methodologies documents. By reading them they look the same. -
Training on business continuity
I am a in a position where I have to assume the responsibilities of a Business Co-ordinator in my workplace. -
Certification options for persons
I want to become ISO 27001 certified but I'm not sure which certification to specialize in. I am currently working with a company creating policies with ISO 27001:2013 requirements. Since I am gaining extraordinary experience I would like to get your advice on which certification I should specialize in, either, Lead Auditor, ISMS, etc. -
Filling SoA
I am writing the SOA - where can I add risks that have come from the Risk Assessment (but there is no applicable control from the Annex)? -
Information security in organizational chart
The book is useful and applicable. But in our organization we have CRO and CISO. Information security risk management must be in CRO or CISO organization ? It is big problem for us. -
Implementation steps
According to the sequence of steps in the package of documents, many specific policies and other documents are included in step 08, under the title Annex A. Does this mean that all those policies are only generated after having completed stages 1 to 7? -
Template content
1 - Hi, unfortunately the templates only have empty tables. Do you have generic prefilled tables, especially for typical risks?