Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Risk management in projects
I have in mind that our customer service managers/project managers do a small risk assessment per new project. -
Question about course
Module 2 ISO27k1 Determining the ISMS Cl 4.3, Which of the following statements describes an ISMS Scope, why answer 3? Offices London & Edinburough? any significance to those locations? -
Requirements for additional certifications
Why do we need ISAE 3402 when organizations already have 27001 certification INCLUDING GDPR!? -
Templates available
Are there templates for all the documentation as well as the final report we must provide the client? -
Becoming an ISO 27001 expert
I need some guidance from you as you are expert in InfoSec area. -
Business continuity on ISO 27001 implementation
I was wondering if I need to include business continuity if I am only doing ISO 27001 and not ISO 22301? -
Implementing ISO 27001
I'm struggling to know where to begin. There are so many documents - even the required only. Each has callouts to other documents. I'm not sure where to begin ... and when I am filling in the information, I feel like I'm making it up on the fly. -
Frequency of performing internal audit of ISMS
Could you please give some information concerning the ISO27001 requirement for frequency of performing internal audit of ISMS. Is there any clear requirement in the standard that organisation's internal audit must perform ISMS audit on annual basis? -
BC policy and BC framework
1 - what is the difference between a business continuity framework and a business continuity policy? -
Documenting policies
Senior management wants to put all policies into one document ("a manual") and therefore only sign/approve one document. Is this allowable for auditing purposes?