Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Compliance with EU GDPR
I wanted to know if there exists a draft framework for co-determination of rights of employees with compliance to EU GDPR? -
Certifying non-IT organization
If I want to implement ISO 27001 to a non IT organization; where most of the requirements are considered as not applicable, is that possible? can they get the certification if they justify the un-applicability of the requirements? -
ISO courses for individuals
I need your advise on ISO course. Which courses are suitable for individual? -
Asset register
I am working on my Information Asset Register and I have a few questions: -
Integrating ISO 27001 and ISO 9001
En nuestra organización logramos certificar ISO 9001, y nos estamos planteando lograr una certificación en 27001. Desde su experiencia, cree usted que la implementación de 27001 podría tener una curva de tiempo más corta a propósito de que por la 9001 ya cumplimos algunos requisitos de la norma? Podría darnos algunos consejos para facilitar la implementación de 27001? -
Competencies for ISO 27001 implementation and management
1 - I've started your ISO 27001 course lectures. I have a question concerning the preparation process for becoming certified. The company I work for soon will start the process of certification which I will coordinate ( with the help of the consultant), since I have interest in the information security and I have some experience with ISO 27001 standard. My question is; do I have to have a certain certificate so I can handle this project and is the consultant necessary for the things I can manage myself (phase of first revision, determination of policies and necessary documents)? -
ISO 27001 and EU GDPR
We are trying to write a frame work for the organization based on the new GDPR(General Data Protection Regulation) passed in European Union. Since our company does business in the UK we will have to follow the GDPR guidelines. I wanted to write a frame work for the GDPR which speaks on the classification of data and how we protect data and further link it with the ISO 27001 standard documents which we already have. -
ISO 27002 compatibility
Does ISO 27002 compatible with IBM QRadar SIEM, for the out of the box reports and compliance? -
Risk acceptance criteria
If our risk acceptance criteria is only to treat the top 5 risks, is it acceptable to only have a risk treatment plan for our top 5 risks? -
New ISO 27001, ISO 27002, ISO 27003
1) I was wondering if your opinion on the updates with regard to ISO/IEC 27002 and 27003 (plus BS 27001:2017) would be covered in a future briefing?