Just wanted to know about what someone needs to provide as root cause for the identified non conformities And mainly corrective action details.
Standard in selection of partnership
Hello, I am performing research for a mortgage back office provider partnership opportunity. I would like to know if there are more than just the ISO 9001 for our line work or should we consider other certs?
Vendor Management Policy
I can't seem to find a Vendor Management Policy in the ISO 27001 Documentation Toolkit. Am I just missing it? Or, is there simply no such policy in the Toolkit?
BCP
hay algún ente (por ejemplo ISACA) que conste que X persona es apta para aplicar la metodología BCP de la ISO
¿Quien revisa y aprueba documentos?
quien debe Revisar y Aprobar los documentos??? En mi empresa existe un miembro del Consejo de Administración y mi persona como responsable de seguridad de la información.... Pero mi duda es esa Quien Revisa y Aprueba los documentos....??
Understanding ISO 27001
I felt that having MBA degree I may not be able to fully learn ISO 27001 especially the areas related to networking and penetration testing.
Protecting a network
Our office in Norway has a shared switch with another company. Only the other company has access to this switch and we see this as a potential risk that we want to minimize, but we don’t really know what the best solution is.
Management representative in ISMS
My question is about roles and responsibilities in 27001. What do you think Management Representative's (MR) position in ISMS. If we have CISO, Do we still need MR. If we have both of them, what is the difference between their responsibilities.
Maximum Allowable Outage
Hi...if the financial impact produces a high result and the non-financial impact produces a marginal result or no result at all, what would be the MAO?