ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 ISO 9001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 14001 Product: ISO 27001 Internal Auditor Course
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Information Security Policy and Business Continuity Management Policy

    Can you please assist with this query. We currently have a lot of confusion between the Information Security Policy prescribing a Business Continuity Management Policy and Annexe A.17 Business Recovery Plan.

  • ISO certifications for cloud computing

    Could you please guide me on what are the ISO specific certifications (similar to 27001 for ISMS) that are required for Cloud Computing (for service providers and consumers)?

  • Risk assessment and the ISO 27001 Lead Implementer course

    I wanted to ask you about ISO 27001 risk Assessment. I was thinking about doing the ISO 27001 online course as an implementer and wanted to know if this would help me to carry out risk Assessments in the business?

  • Template content

    What’s the meaning of Necessary manual controls that exist in Appendix Specification of Information System Requirements document and it’s a mandatory or not?

  • Risk management

    I do have a question about risk management that need your advice. At this moment, we just finish risk assessment process, lay say we identify and assess around 300 risks, 10 of them are high risks, 50 of them are medium risks, and the less are low risks. For risk treatment process...

  • Filling the Statement of Applicability template

    I have an inquiry regarding the Statement of applicability document section 3. Applicability of controls ; why do we have to fill the control objectives column ? and is it mandatory ? if mandatory would you please provide a supporting material or example as the ref. article at the attached form is not helpful.

  • Risk management approach

    Your book is very useful to me which it could guide me the way for start up to do risk management. But I wonder that is it ok ? If I write the new Risk framework + methodology for implement in my company by combine the both ISO and COBIT 5? or I can use only one among both?

  • Using risk assessment and treatment templates

    I have a question regarding the Risk Assessment and Treatment Documentation at the EU GDPR & ISO 27001 Integrated Documentation Toolkit; Do we have to create the following 3 documents Risk Assessment table, Risk Treatment Table and Risk assessment and treatment report as mentioned at the toolkit or we can use one sheet for the Assessment and treatment and reporting as the attached sheet?

  • Cloud security concerns

    I am currently working with a small client that hosts its production servers in the cloud.

  • Man-days needed for ISMS implementation

    Is there any calculation formula to estimate the man-days needed for ISMS implementation according to required information you provided in your questions?
Page 271 of 544 pages