Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Audit observation
Hola Dejan, tengo una duda, en reciente auditoría nos hicieron la observación que tenemos que documentar una política de cifrado de datos, en la que se describa de acuerdo al tipo de información, estado (en tránsito, en almacenamiento, en movimiento) y de acuerdo a su tipo de almacenamiento (servidores, equipos de cómputo, etc.), si requieren las aplicaciones de controles criptográficos, y revisando el documento de la política del uso de controles criptográficos no viene nada al respecto, gracias por tu apoyo. -
Including business process description and scoping in the ISO project
Business Process description and scoping for the standard should be the part of ISO implementation or it is rather separated project? -
Filling SOA for ISO 27001, 27017 and 27018
Please guide me on how to fill the SOA for ISO 27001 27017 and 27018. -
Certification requirements
¿Qué necesito para que mi empresa pueda ser certificada en ISO? -
Integrating management systems
How to integrate these standards? -
Control application
1 - How to determine if a control is in or out of scope for a Company. -
Management systems benefits
Some places do not have the managements systems culture. How do we make the companies aware of the benefits? -
Updating expert knowledge
How an independent expert in ISO Standards should keep himself updated? Request advice for the shortest method. -
Privacy controls
The Data Privacy Law is a new law in our country. The law requires that a company have an ISMS. What material could you refer me to that includes data privacy explicitly in ISO 27001? -
Documentation elaboration
How to write documentation part while implementing ISO:22301?