Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Certification costs
What recommendations we can have to minimise the cost of the certification? Is it possible to shorten its time (4-9 months so far I know) of implementation phases. Organisations are reluctant to use it because of these two major factors - cost and length of implementation process as per in my survey recently. I would appreciate if you kindly let me know what do you suggest. -
Toolkit documents
I have recently started to run over the ISO 27001 toolkit and have a question, are we missing the ISO 27001 document? As I have noticed that some of the referencing refers to “ISO 27001 7.5 document” I can’t find this in the download that we purchased. -
ISO 27001 references
Because I am not familiar with ISO 27001, do I need to purchase ISO 27001 books? -
Risk treatment
Would like know whether it is possible to get hold of RISK TREATMENT EXCEL sheet with pull down threats and vulnerabilities used in your video. -
Material for information protection
I need to find a course or material to assist we and guide me in doing the following regarding data classification security. -
Difference between sites and Certificates in ISO SURVEY
I'm reading the survey publish on the ISO page, https://www.iso.org/the-iso-survey.html, but i'm confused because they are mentioning two different things Certificates and another column for Sites. What this means? they are different types? -
Implementing ISO 22301 with support of ISO 27001
I have bought from you the ISO_27001_ISO_22301_Premium_Documentation_Toolkit_EN back around May 2015 I believe; I have successfully been certified against ISO 27001:2013 by BSI, and now in process of implementing the ISO 22301:2012, to get certified around July 2017. -
Risk assessment and BIA
What would be the best practice for inclusion of ISMS risk in the BIA analysis, or in the questionnaire? My colleague, ISMS manager thinks I should add to BIA questionnaire fields with URLs applications that are used, so we are interested in what is "best practice" for this purpose? -
Implementing a Business Impact Analysis according ISO 22301
Seguramente una vez un webinar colmado de profesionalismo y sabiduría. -
Auditor's opinion
Hypothetically speaking how do you think an ISO 27001 auditor would view the following situation: a firm that is very paper dependent, through the risk assessment process has identified risks to the papers, the impact of which could be very high not only financially but to the reputation as well. Following the risk assessment that firm then chose to accept the risks of loss of confidentiality and availability of those documents and not implement a clear desk policy and provide some additional storage in order for the organisation to securely lock the documents away at night.