ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Rhand Leal

Carlos Pereira da Cruz

Dejan Kosutic

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit ISO 9001 Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 9001:2015 ISO27001

Sort by:

Select

CREATE NEW TOPIC +

Guest

Guest

Create New Topic As guest or Sign in

Business department* About business* Organization size*

Title *

Body *

HTML tags are not allowed

Category *

Select

Tags

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Assign topic to the user

Select user

ISO 27001 4 Context Of the Organization
Internal Audit after the ISMS release
How long Do I need to wait once the ISMS is released for start with the internal audit?
Mandatory documents and records
We purchased your 27001 Academy Premium Documentation Toolkit. I noticed that the included 27001 Academy toolkit lists 25 mandatory documents while the included IS&BCA Checklist of Mandatory Documents lists only 16. Which one should be used? Please let me know.
ISMS in a bank
I'm looking for best practice to implement isms in a bank. i don't know how to start. it is a big project and it must devide to some scopes. what need i do?
ISO 27001 Audit requirements
is it a requirement to have an external company to perform an iso audit? I didn't see it in the requirements or can a company perform an assessment on its own? audit* I mean
Risk assessment and risk treatment
1 - What is the next step? Is it to again talk to all risk owners and go through the Risk treatment plan in order to set deadlines/needed resources?
External documents to be controlled
I have a question about the following document: Document Control Procedure. At paragraph 4 External Documents. What kind of documents are we talking about?
Data Protection Impact Analysis
Nice product about BIA , but .... the first topic for discussion is DPIA in UE, like of BIA. Can you help in this part? It is very interesting from point of view on GDPR direction.
ISO 27001 and business continuity
1 - My firm is more interested in the ISO22301 (BCP) model and framework. ISO27001 is more on DRP (IS) while ISO22301 is on crisis, disatster and business continuity on the holistic (business and systems) platform, am I right sir?
Threat Value VS Vulnerability Value
Actually i need to understand how we can evaluate the threat value and the Vulnerability Value too and what is the relation between them? example : if i have a high threat value should the Vulnerability value to be high too or how can i calculate it