ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 ISO 9001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 14001 Product: ISO 27001 Internal Auditor Course
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Secondary site location

    I have a problem about the standard distance between primary data center DC and secondary data center DR. What is the standard distance worldwide?"

  • Controls objectives

    I am working on the Statement of Applicability for a client. Where it asks for “Control Objectives” there is a comment that says: They should be defined for each of your controls and made measurable if possible; however, you can also copy objectives listed in clauses categories in Annex A. Where is the objectives listed in the clauses categories in Annex A? I have reviewed Annex A and do not see this?

  • Regulatory compliance

    How to determine the appropriate level of completeness in regulatory identification of a ISMS according to the scope? My doubts is because I found gaps between SOA, scope and a.18.1 controls and I-m not sure how to handle them.

  • IATF 16949 and ISO 22301

    I'm the QS Mgr. At the moment we are IATF 16949:2016 certified. Hence Contingency Plan per clause 6.1.2.3 is a must and is already in place per the std. Is there a need to go for the ISO 22301 ? How are they different ?

  • Testing cyber security

    To test cybersecurity risk,control system,plan and strategy for chosen organisation,it needs software or some link?

  • Resources for ISMS and BCMS implementation

    How much manpower will I need to implement ISO 27001 and ISO 22301?

  • MAO vs RTO

    What's the difference between the MAO (Maximum Acceptable Outage) and RTO (Recovery Time Objective)? Let's say the MAO is 8 hours, shouldn't be the recovery time 8 hours as well? Isn't it the same thing?

  • Benefits of ISO 27001

    Im preparing a document for my ICT Director to take to exco to justify why our organization (a central bank) should be iso27001 certified please share some links where I can information for my paper

  • Is Risk Treatment Table necessary?

    When there is no unacceptable risk on my Risk Assessment Table, is it necessary to fill out the Risk Treatment Table?

  • Statement of applicability A.17.1.3

    The implementation method of control A.17.1.3 talks about an [exercise and test plan] as well as a [form for review after incidents]. To which document(s) / guidline(s) these two documents are related to?
Page 290 of 544 pages