ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 ISO 9001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 14001 Product: ISO 27001 Internal Auditor Course
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Asset owners

    In one of your webinars you mentioned about grouping assets together such as laptops and pc’s if they all share the same threats, how would I go about documenting the asset owners? Would I list all the asset owners names in a comment within the column box in excel?

  • Information Security Program

    I’m still working on my documents and start downloading your documents and templates. My primary task for now is to create an Information Security Program (ISO) for the Organization as part of the primary requirement of our Regulator to be submitted this 3rd quarter of 2018. Looking on the templates I’m not sure where I can pattern this or probably get guidance or format on how the ISP will look like. If you have same document that I can refer with, it will be a great help.

  • Documenting competencies

    Will you please let me know if there is some guidance from ISO how competencies can be documented by experience, training and or education regarding assumed tasks?

  • Defining scope

    I am looking for your expert advice on ISO 27001 out of scope. Here is an example of the scenario:

  • Certificar un producto o servicio con ISO 27001

    ¿Es posible certificar un servicio o un producto? o únicamente es posible algún proceso del servicio y/o producto.

  • Loading and unloading areas and ISO 27001

    1 - I need to understand the details for Loading & Unloading Areas complaint to ISO 27001. I mean if we want to make from scratch a loading & unloading area.

  • Toolkit selection

    I am currently in charge of establishing and implementing an ISO 27001 ISMS in my organization. Initially, the scope was for a process and facility in the US but this has been expanded to include two facilities in Europe (France and Belgium). The company is a French company and uses the EU GDPR regulation in Europe but also need to comply with the US legislator requirement.

  • Information labeling

    I have a question about the information classification policy. What is it that needs to be labeled when talking about information labeling? Is this going to be all documents within the organization, electronic and other forms, that need to be labeled according to this policy? Or is it just the documents about the ISMS? It would be tough to go through every document and label it as such.

  • Personal certification maintenance

    I have completed my certification in ISO 27001 lead Auditor in 2016.
Page 295 of 544 pages