Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
ISO 27001 Gap Assessment for a Bank
Hi, I would like to know the best way of conducting an ISO 27001 Gap Assessment for a Bank? -
PCI DSS and ISO 27001
My outfit is already PCI DSS certified and currently working at getting certified for ISO 27001. -
Implementing ISO 9001 and ISO 27001
I am working on implementing ISO 9001 and ISO 27001and I see that some Chapters/Clauses is the same. Like training, audit, management review etc.Will it be enough two write in the ISO 9001 that these cahpters also refers to the Companies ISO 27001 or do I have to make a seperate procedur for ISO 27001? -
Personal data
During an ISO 9001 Internal audit, what information is considered as personal data? -
Resources for ISO 27001 Exam
My company has booked my exam with APMG (ISO 27001:2013 Foundations exam). I have tried to use their sample exam after studying Secure and Simple, but I feel contents of this book doesnt satisfy the requirements of APMG exam. Can you please suggest how to prepare or what sources I need to pass the exam? -
Writing a non conformity
Is it possible you can share an example of doing a CARS in practice? How to report in CAR for the non conformance and record the Finding, Requirement, Evidence and Relevant Clause. -
Template content
When trying to update data in the Appendix_1_Risk_Assessment_Table in the Consequences and Likelihood columns I receive the Values 0, 1 or 2 Allowed yet no indication is given as to what 0,1 or 2 represent. -
Risk assessment and treatment process
I watched a PECB presentation on YouTube in which a presenter placed SoA as the last step in the risk management process. This contadicts with what you have written in your book. -
ISO standard selection
What would be the correct ISO Standard for the following: -
ISO 27001 and ISO 20000
We have ISO27001 certificate, but our client is looking for ISO20000 for system management and operation certificate, need your advice whether we should go for ISO20000 certification?