ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment ISO 9001 Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Product: ISO 27001/Risk Assessment Table Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001 Internal Auditor Course Product: EU GDPR Documentation Toolkit
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • ISO 27001 in software development

    I am a software developer and the company I work is planning to apply the 27001 standard in the next two months. I wonder if I Can to apply the 27001 standard in all the software's I developed? If yes what are the steps because I tried to read all about the standard and I found it confusing. I need help to start before the company and the auditors please help me with all respect

  • List of Legal, Regulatory, Contractual and Other Requirements

    Does the above list include United Kingdom legislation. What sectors does it cover?

  • Planning information security continuity

    I have a question about control A.17.1.1 (inside the Statement of Applicability.) The implementation method talks about a methodology of business impact analysis (GAA). Is there a template anywhere or do we have to make this on our own?

  • Case studies and quizzes

    Do you have any case studies and quizzes or simulations so that I can teach and make my students to practice ?

  • The Risk Treatment Plan and the Implementation Plan

    Section 10. It says “Implementation plan” but the document states “Risk Treatment plan”. Risk seems to be under section 7. Please explain

  • Working out the RTO and RPO

    I’ve completed the Business Impact Analysis questionnaires and I need to work out the RTO and RPO. Do I need to work out the RTO and RPO per application and database for each activity (department)?

  • Asset inventory and risk calculation

    Do you have anything about how I can to do asset inventory and calculate the risk ?

  • SoA alteration

    For the first time we need to include Outsourced Development in our Statement of Application, meaning our SoA version changes. How does this impact certification? We wouldn't be due an external audit until August 2019 Many thanks.

  • Classification of assets

    Can you clarify me the classification of assets when it comes to ISO 20001?

  • Arguments for control adoption

    I'm considering buying the Password Policy but I'd like to know if it can help me before I buy it!
Page 266 of 544 pages