ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment ISO 9001 Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO27001 AS9100
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • ISO 27001 implementation

    1 - What are the requirements for implementing ISO27001? Who can implement it and what type of experience is required?

  • Risk management

    1- They ask for us to consider assets. Would a non-tangible assets such as intellectual property be considered an asset for ISO 27001.

  • Setting up a network

    I'm a student and I have been assigned a project whereas I have to setup a network in a foreign country from scratch. The only resource I have is a building protect by embassy rules. I'm in desperate need of a template for how to perform this function.

  • List of evidences / artefacts

    I need list of evidence/ artifacts to be asked client while doing risk assessment , it should include all the 114 controls, please provide all the 114 controls evidence to be asked client.

  • GC Mark for business continuity

    Do you have a personal opinion on the GC Mark (Global Conformity Mark) as an interim step before pursuing ISO 22301 certification? We have a Business Continuity program, but it is not 100% rolled out, so we are not comfortable with ISO certification yet.

  • Procedure for document and record control

    1- When creating the risk assessment, do we consider all the existing 'controls' that are in place.  For example, we already have a password security policy and 2 factor authentication enabled by default, therefore our risk of someone accessing our email for example that doesn't have permission is low (no one is going to be able to guess our passwords).   In this case do we need to identify them as it appears it's required in the statement of applicability.

  • Toolkit structure

    About to start the journey but the GDPR documentation is integrated into the ISO Kit, is there a quicker way of separating them from the toolkit? Or do I have to go through the toolkit and pick out each document that belongs to GDPR one by one?

  • Risk assessment examples

    Can u pls guide me on process based risks..I mean some exampls of that ..I need to do Risk Assessment of an Account.

  • Investments on ISO 27001

    Estou trabalhando em um plano de negócios que envolve entre uma série de fatores, os mais importantes para o assunto 27001 é que se trata da aquisição de uma pequena empresa de fabricação de software.

  • Inventory of assets

    The inventory of assets is related only to the Information related assets? or the furniture and other fixed assets are included too.
Page 324 of 544 pages