In the risk assessment conducted...i am using activity based approach. So for each activity assets would have been identified in the bia. How do i determine the result if one asset owner rates a laptop high compared to another asset owner who rates it as low?
Toolkit content
1 - I have been looking into the ISO 27001 documentation in our Conformio account (XXXX) and I not sure if we have understood correctly what we bought as far as the compliance packages.
Performing gap assessment
I wanted to know specifically what kind of questions to ask the client during the gap assessment phase of the ISO 27001?
IT Support provider with small network in single location. Helpdesk and Client network monitoring system in the Cloud. Datacenter with Rackspace and physical servers.
Implementation consultancy
1 - In terms of consultancy, do you guys provide consultancy for ISO 27001 implementation?
Performing audits
Does getting the iso270001 certification mean that i can perform the audits for other companies and deem them iso-compliant?
ISO 27001 benefits
Can you tell me what benefits ISO 27001 has?
3402 statement and ISO 27001
I have an accountant suggesting a 3402 statement instead of a ISO 27001 certificate. Does this make sense?
Integrated internal audit
1. Is any possibility of combining the internal audit process for both standards(9001 + 27k)?