Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Difference between ISO 27001 certification and CISSP
Kindly clarify me on the difference between ISO27001 and Certified System Security Professional (CSSP). -
ISO 9001 qualification to obtain ISO 27001 qualification?
I would like to participate to ISO 27001 Lead Auditor course but unfortunately I received different answers from different organisations. Some of them said that I am not allowed to take part of this course due to the fact that I don't have ISO 9001 certification. The rest of them said that I can participate to this course even if I don't have ISO 9001, because my 4+ years experience in IT field is enough. (I am currently holding a QA position.) -
Improve my employability
May I ask you advises in the trainings/certification jungle. I’m looking forward to start certifications to improve my employability. What’s your recommendation around : ISO27001, SANS, CISA w/wo COBIT, … -
Location of ISO 27001 and 22301 Clauses
In the reference documents sections, I see list of clauses referenced for each particular document. I'm sure I'm overlooking something simple, but where do I find those clauses? Are they provided in the toolkit we purchased, or are they separate? -
Accreditation body or certification body?
I wanted to know how a company/firm can be an accreditation body to certify other or organizations. Could you please assist me in this, if you are aware of. -
Mobile computing and teleworking
I am confused by mobile computing and teleworking since mobile devices are used for teleworking and no need for special physical location for teleworking as in old days! Can you give me more clarification on this? -
Is assessing asset value mandatory?
I happened to listen to the recording of your webinar on 'Basics of RIsk Assessment and Treatment'. -
Perform a course?
Regarding the LI and LA. I am not attending formal training. The people over at ITGOV are allowing me to take the exams from home (moderated by webcam) so long as I read the IT GOV 6th Edition and the ISO 27001/2 standards. In your experience, will the above - coupled with many years it IT security experience - be sufficient to take on these exams? Also, is there anywhere I can view example questions, just to be sure my study approach is sufficient (I don't want to waste the exam fee if I can avoid it). -
Diagram of ISO 27001 and ISO 22301 implementation
Could you please provide us an end to end flow diagram of steps/ phases in order to plan an ISO 27001 and ISO 22301 implementation exercise. -
Audit the entire standard?
How can audits be planned to cover the entire standard? Is there an accepted way to sample different portions of the standard over cycles? (Ex. how can all 133 controls be audited each time without missing other areas of the Standard?)