ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit ISO 9001 Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001/Risk Assessment Table Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001 Internal Auditor Course Product: EU GDPR Documentation Toolkit
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Project Manager as internal auditor

    I have an inquiry about if a Project Manager in charge of implementation of the ISO 27001 also can be the internal auditor of the ISMS and coexist with a CISO?

  • ISO 27001 and ISO 27002

    Can you break down the main differences between an ISO 27001 and an ISO 27002 certification? Is 27002 a higher standard then 27001? I want to be sure that if we are going through the effort to be certified that we are working towards the right goal for our organization.

  • ISO 27001 and GDPR

    I have a list of required GDPR documents, please can you advise which falls under ISO 27001?

  • Implementation of ISO 27002

    I would like to know which companies have implemented ISO 27002?

  • Certification of remote companies

    We've got into Conformio and I just ran into a question that I need clarification on. XXX is a 100% remote company, meaning we have no physical buildings and everyone works from home. I've been discussing with assessors and was just told that you cannot do ISO 27001 if you do not have a physical headquarters building. I need to know from the folks who know the answer. Can we do a ISO 27001 certification if we do not have a building?

  • Secure Development Policy

    I am looking at implementing a Secure Development Policy. Our ISO 27001 pack contains:

  • Risk Registers

    1. How many risk registers can we have? Can we have a separate 1 for Business continuity and another for Security and another for the Enterprise? Or if we had 1 risk register how would we decide which risk belongs to which standard...?

  • Questions about ISO 27001

    Necesito de su valiosa colaboracion: Estoy realizando un trabajo investigativo y necesito esta información

  • Audit requirements

    Is it a requirement (mandatory) of ISO 27001:2015 for the internal or external auditor to do a site visit? I say yes (A.11 Physical & Environmental Security) but I'm getting some pushback from my management.

  • Questions about ISO 22301

    1. What is the ideal timeline to implement ISO 22301 for a Business Unit (BU), of estimated 500 staffs, with multiple departments?
Page 238 of 544 pages