Get a 20% discount on the first year of the Company Training Academy annual plan.
Limited-time offer – ends April 24, 2025
Use promo code:
CTA20

ISO 27001 & 22301 - Expert Advice Community

Home / ISO 27001 & 22301

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit ISO 9001 Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 9001:2015 ISO27001
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Questions about ISO 27001 & ISO 22301 Premium Documentation Toolkit

    First and foremost I was thinking there would be a separate templates solely for ISO 22301 instead of what I have now as the ISO 27001 control BCP templates.

  • ISO 27001 - must you implement all the 133 controls?

    I would like to do next question about ISO27001. when you are developing ISO 27001, must you be implementation all controls of ISO 27001?, the 133 controls?...or only the controls that apply?

  • Risk analysis tool

    Hi friends, Could you tell me if you use a risk analysis tool? Which? could you recommend me some? Has anyone used PILAR maybe?? Thanks Best Regards

  • Preventive actions in ISO 27001

    The old version of the std was referring to preventive actions and the new one no longer (chapter 10).

  • Clause to requires status of control in 27001:2013 SOA

    I am not sure whether in the new 27001:2013 SOA really required status of each control instead of just yes or no in 2005; Where is the cause in standard state that we need to add "status of implementation" in 27001:2013 SOA? Thank you

  • Does the scope exclusions allow in 27001:2013

    Does the scope exclusions still allow in 27001:2013's scope? In "IRCA Technical Review Briefing Note ISO 27001" Page 6 4.3 say that no exclusions allow Thank you very much

  • Risk Acceptance Criteria and Residual Risk

    Hi friends, I have a question if you can help me. I'm establishing the Risk Methodology and I have established the risk levels and the Risk Acceptance Criteria, my question is: the residual risk is explicity in the risk acceptance criteria?? Or how I can establish the Residual Risk in my methodology? and its treatment?? Thank you so much Best Regards

  • Which are better ways to test the BCP?

    I have to comply with ISO 27001 requirements related with BCP, and one of this requirements is to test every year the plan, my doubt is the following: In big organizations with thousands of people and a lot of locations, which are the better ways to test the BCP, as far as I know it could be tested through real test, walkthrough and checklist... Which one is better?

  • Who needs to sign an NDA?

    I’m buiding up the ISMS and I requested some positions in my company to sign on NDA in ISMS, but I don’t know exactly who have to sign on NDA (eg. Director, CSO, Security Representative etc…). If I’m the boss, do I have to sign on an NDA?

  • How I can build my career in ISO 27k implementation and auditing

    I am an info sec professional with 4 years of experience in penetration testing, Secure code reviews, PCI DSS testing for web apps and a base knowledge on ISO 27k . I would want to seek your advice on how i can build my career in ISO 27k implementation and auditing for organizations. Are you based in the UK? Is there a company that you run and train people on ISO 27K ? since i am passionate and want to build my career as a Lead auditor ISO systems i would want your advise and help in these lines. I am in the UK currently looking out for job opportunities.
Page 526 of 544 pages