Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Controls measurement
I was reading this link https://advisera.com/27001academy/blog/2012/04/10/iso-27001-control-objectives-why-are-they-important/ -
List of assets
My question regards to how thorough the list of assets should be. With an example; in our data center there´s data rooms, offices and so on. Even one of the stories is empty and might eventually be rented to some other company. I understand that we should make a difference among offices, data rooms, electrical – cooling – other infrastructure rooms inside of the building, since there´s different threats and vulnerabilities to each one of them that should be addressed differently and with different access levels and permissions. -
Gap analysis
I wonder, how important is gap analysis for planning process in isms based ISO 27001:2013 ? Why we should do gap analysis (at this point, i want to make a plan for implementing isms in an organization)? -
Video and template content
1 - I have noted a difference in 2.0 Reference Documents. -
Integrating ISO 27001 and ISO 9001
a) Can the templates within your toolkit be amended. For example: with the Scope of Applicability, are we able to add additional columns if necessary? -
Training on ISO 27001
What type training mechanism would you recommend to manage the 27001 process regarding its lifecycle (e.g. ITiL, CMMi, etc) for a technology company? -
ISO 27001 and ISO 22301
1. When we talk about business continuity in ISO 27001, are we talking about continuity of whole business or only for Information Security Management Systems? -
ISO 27001, ITIL and ISO 20000
Where do ISO 27001 & ISO 20000 & ITIL meet? -
Risk assessment methodologies
Other than using the asset valuation method of risk assessment, are there any other risk assessment methodologies that can be used? -
BCP measures for Natural disasters
What are the best BCP measures for Unplanned event eg. Natural disasters?