ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment ISO 9001 Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Product: ISO 27001/Risk Assessment Table Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001 Internal Auditor Course Product: EU GDPR Documentation Toolkit
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Standards correlation

    Is there a matrix for all the ISO Marks, ie 9001, 1400,45001,27001?

  • Relationship between ISO 20000 and ISO 270011

    Are there any documents showing shared relationship between ISO 20000 and ISO 27001?

  • ISO 27001 implementation issues

    1) what are the main KPIs to measure the effectiveness and efficiency of the implementation of ISO 27001?

  • Recertification activities

    1. Our ISO 27001 consultant is doing a vulnerability assessment as part of our recertification. I do not recall a vulnerability assessment is needed. If anything, the company should have a documented process (be it vulnerability assessment, patch assessment etc) that should be followed. Is this going overboard?

  • Marketing for Lead Implementer and Lead Auditor

    Which certification has more requirement in the market. ISO 27001 Lead Implementer or ISO 27001 Lead Auditor

  • ISMS Policy

    I have a question about the ISMS Policy - Section 4.4 Responsibilities. Which specific person / job title would you recommend for mark 7 and 8? In the video tutorial the last two marks (7 & 8) doesn’t exist."

  • ISMS Budget

    I am new to the CISO position and would like to ask what are the things I must look at in order to build 2019 budget in regards to implementing and maintaining the ISO 27001 Certification? Off the top of my head I can think of Training and Awareness, I created an Emergency pamphlet which is respective to every location of my company, IT contract and software renewal, my travel to Europe at least 6 times a year. what else should I be looking at? The IT stuff will be taken care of by the IT department.

  • Control A.14.2.5 Secure System Engineering Principles

    We’re coming up to completing our documentation but can’t find a template for A.14.2.5 Secure System Engineering Principles, which is a required document for ISO 27001. I see A.14.2.1 Secure Development Policy, which isn’t a required document. Can you please provide a template for Secure System Engineering Principles?

  • Developing documents

    I was wondering if it’s necessary to write a document policies for the one who’s not applicable to our organisation. By example, we don’t accept employees to bring there own device at work, do we need to write the Bring your own device policy?

  • Filling in ISMS policy template

    Document: ISMS Policy, Section: 4.1 objective requirements and measurement
Page 285 of 544 pages