Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
ISO 27001 and NESA
How to link ISO 27001 With other standard like NESA ? -
Specifications for server room
I'm looking for a section that gives the physical security and building standards for a server room. In other words the building standard requirements. -
Controls documentation
In regards to the documentation of the controls we have decided to implement for 27001 how do we document how we actually do things? Or do we even need to? -
Information classification template
I am working on document A.8.3. In this document the following is stated: -
Filling a SoA template
Hello rhandleal, -
ISO 19001:2018
My main concern is that your book is the First Edition, 2017, and is obviously based on ISO 19011:2011. As you would know, ISO 19011:2018 has just been published, so I am wondering to what extend my book is now obsolete and I have only had it for approximately two months. So knowing this, it is difficult for me to say if it will be of any use to me, and has been a waste of money. I don’t have the time to compare it with the new edition (2018) of ISO 19011. -
ISO 27001 & Regulatory laws
Hi, Just a quick one. Does being ISO 27001 compliant automatically means being regulatory & local laws compliant ? Can a company be ISO 27001 compliant without being compliant with local & regulatory laws ? -
Filling SoA template
Document: SOA (statement of applicability) -
Information security policies
I have a question regarding Acceptable Use Policy vs all of the smaller documents (DYOD, Teleworking, cryptographic controls, password policy). -
Control 6.1.2
Gostaria que me ajudasse a entender de forma mais plena o A 6.1.2 . Pelo meu entendimento diz respeito a direitos de acesso a informação conflitantes por exemplo: Departamento de compras, conflito de acesso ao departamento financeiro. Estou criando uma matriz que informa os direitos de acesso e as barreiras de controle indicadas. Estou no caminho certo?