Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
PII and free text fields in information systems
Regarding data protection – if there was a free text field, is there the risk of PII being invoked? -
ISO 27018 and EU PDPR
Concerning data protection policy according EU GDPR, while formal ISO 27018 certification is not a goal (the goal is go for 27001, but bring in parts of 27018 as appropriate), can 27018 portions help better formulate this policy? -
Document labeling
Let's say the organization has a confidential document, is it mandatory to have document labeling (in header or footer) on each page ? -
BYOD policy
Would like to know about BYOD policies and its compliance on ISO 27001. -
Combining ISO 27001 and ISO 9001 risk assessment
How can we combine the risk register of ISMS to QMS Risk Clause (6)? -
Certificar ISO 27001 en Perú
Quisiera saber en que lugares se puede certificar en la norma iso27001 aqui en el Peru -
Security controls and the internal audit
How can audits be planned to cover the entire standard? Is there an accepted way to sample different potrtions of the standard over cycles? (Ex. how can all 133 controls be audited each time without missing other areas of the Standard?) -
ISO 27001 for health organizations
How well does ISO 27001 advance healthcare security and patient privacy compared to other security frameworks? -
Certification against ISO 27018
Regarding ISO 27018 standard introduction and objectives, an organization can be asked by a customer to be certified against ISO27018? -
Cloud service customers and ISO 27018
Can cloud service customers be certified against ISO 27018?