ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Rhand Leal

Carlos Pereira da Cruz

Dejan Kosutic

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 ISO 9001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 14001 Product: ISO 27001 Internal Auditor Course

Sort by:

Select

CREATE NEW TOPIC +

Guest

Guest

Create New Topic As guest or Sign in

Business department* About business* Organization size*

Title *

Body *

HTML tags are not allowed

Category *

Select

Tags

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Assign topic to the user

Select user

Controls performance measurement
How would you measure security controls performance and effectiveness and provide a sample dashboard that you have built before?
Inventario de activos
Estamos en la compañia levantando el inventario de activos de información y quisiera saber si tienen una matriz que pueda utilizar de ejemplo o un documento que me indique los criterios mínimos que debo tener en cuenta para la construcción de la matriz que me permita desarrollar todo el inventario de activos
Cyber security industry in South Africa
I am writing to inquire about the cyber security industry in South Africa.
Template content
I do see that you have an internal audit checklist for US 49.90 I want to be sure that it will cover the questionnaire for all the clauses and annexure for ISO 22301 and ISO 27001.
Gap assessment report
Now I need to create a gap assessment report from the implementation perspective I want report format, not a checklist. What document can be used for ISO 27001 GAP assessment report?
Documentation of security responsibilities
Is it necessary to add the specific ISO 27001 duties, responsibilities and related ISO controls to the job descriptions of HR, Finance IT Manager, Office Administrator managing some aspects of physical access? I have already written job descriptions for the Information Security Officer and the Data Protection Officer.
Risk assessment approach on ISO 27001
I want to know if risk assessment in ISO 27001 standard is asset based or process based?
Changes in scope
We are a company based in XXXX and we are looking into possibilities of also opening an office space in XXXX and XXXX. My question is if this will affect our ISO scope. Do we have to include these other offices in our scope,or is it possible to only certify the company based in XXX?
Scope definition
1 - Background
Policies, procedures and guidelines
1- There is a debate on ISMS Security Policy, Security Policy & System-Specific Security Policy.