Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
ISO 27001 and GDPR
I have a list of required GDPR documents, please can you advise which falls under ISO 27001? -
Implementation of ISO 27002
I would like to know which companies have implemented ISO 27002? -
Certification of remote companies
We've got into Conformio and I just ran into a question that I need clarification on. XXX is a 100% remote company, meaning we have no physical buildings and everyone works from home. I've been discussing with assessors and was just told that you cannot do ISO 27001 if you do not have a physical headquarters building. I need to know from the folks who know the answer. Can we do a ISO 27001 certification if we do not have a building? -
Secure Development Policy
I am looking at implementing a Secure Development Policy. Our ISO 27001 pack contains: -
Risk Registers
1. How many risk registers can we have? Can we have a separate 1 for Business continuity and another for Security and another for the Enterprise? Or if we had 1 risk register how would we decide which risk belongs to which standard...? -
Questions about ISO 27001
Necesito de su valiosa colaboracion: Estoy realizando un trabajo investigativo y necesito esta información -
Audit requirements
Is it a requirement (mandatory) of ISO 27001:2015 for the internal or external auditor to do a site visit? I say yes (A.11 Physical & Environmental Security) but I'm getting some pushback from my management. -
Questions about ISO 22301
1. What is the ideal timeline to implement ISO 22301 for a Business Unit (BU), of estimated 500 staffs, with multiple departments? -
Information Security Officer position
My question is about the Information Security Officer position in the company. Is it required to have such a position for ISO 27001 certification? -
Risk management process
I have a question regarding the risk assessment process and the documents from the toolkit.