Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Documentation update
How often should a company publish its ISO policies and procedures? Should it be done every time a policy or procedure is revised/modified? -
Physical security and human resources policies templates
Please do you have to share some physical security and human resources policies templates? -
ISO and COBIT
I have some question to ask you related to risk assessment as below: -
IT strategy
In an EU GDPR/ ISO 27001 presentation with a potential customer, the question of an IT Strategy came up - couldn't find such document. Do you know if this is part of the integrated toolkit, maybe named differently? -
ITGC
1.What is ITGC controls and how it is related to ISO 27001 ? -
Change policy
I am ISMS-Manager at our Company and due to agile software development the request arises, that deployments to the Pre-Production environment can be done without raising a change in advance. This Pre-Production is under control of our RUN-Space, that operates as certified ISO 27001 realm. -
Organizing documentation
We are looking at the classification and handling of files and have decided to take the opportunity to organize our file shares and folders more efficiently to make identification and responsibilities clearer. Do you have any advice or best practice experience on structuring file shares and folders to achieve this? -
Risk assessment and risk management
1. What is risk assessment and what is risk management? -
Change Control in an Agile DevOps environment
I wondered if you had any resources on implementing Changing Control in an Agile DevOps environment, whilst complying with ISO 27001 please? -
Action plan for internal audit
How to create an action plan for internal audit? Is there any format for implementing it?