Start a new topic and get direct answers from the Expert Advice Community.
CREATE NEW TOPIC +Search results for "iso17025 vs gmp"
1219 results
Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
BCM tools
... https://advisera.com/27001academy/free-downloads/
Anyway, I think that this article can be also interesting for you ÃÂWhen to use tools for ISO 27001/ISO 22301 and when to avoid themÃÂ :ÃÂ https://advisera.com/conformio/blog/2021/06/24/toolkit-vs-conformio-which-is-more-applicable-for-my-company/ -
Escenarios en Continuidad de Negocio
... recovery vs Business continuity : https://advisera.com/27001academy/blog/2010/11/04/disaster-recovery-vs-business-continuity/
No obstante, puedes implementar tu plan basándote en tu negocio (y también en tu experiencia), aunque hay muchos escenarios que pueden ser comunes en cualquier situación (un ejemplo, el relacionado con la indisponibilidad de las personas/trabajadores).
Ten en cuenta también que la Continuidad de Negocio es tratada en profundidad en la ISO 22301, mientras que ISO 27001 está más relacionada con el Plan de Recuperación ante Desastres, lo cual está más relacionado con la infraestructura TI.
Por tanto, mi recomendación en tu caso es que uses el Plan de Recuperación ante Desastres porque es más "tecnológico", e igualmente puedes considerar el escenario relacionado con la indisponibilidad de tus empleados, pero creo que no es necesario que consideres el escenario relacionado con la publicación de información, porque no está directamente relacionado con la infraestructura TI. Pero importante, piensa que tus escenarios tienen que estar basados en los resultados del análisis de riesgos. También puedes ver nuestra plantilla (puedes ver una versión gratuita clickeando en "Demo gratis") "Ejemplos de escenarios de incidentes disruptivos"  https://advisera.com/27001academy/es/documentation/ejemplos-de-escenarios-por-eventos-de-interrupcion-del-negocio/Â
Finalmente, también puedes ver nuestro tookit de documentos de ISO 22301 aquÃ: https://advisera.com/27001academy/es/paquete-de-documentos-sobre-iso-22301/ o nuestro paquete Premium, el cual incluye documentos sobre ISO 27001 e ISO 22301 (recuerda que siempre puedes ver una versión gratuita clickeando en "Demo gratis"): https://advisera.com/27001academy/es/paquete-premium-de-documentos-sobre-iso-27001-iso-22301/ -
iso 27001 lead auditor
Sure, you are welcome. And sorry but we do not have other specifics examples related to your question, but if you need more information about nonconformities, I think that this article can be interesting for you "Major vs. Minor nonconformities in the certification audit" :
https://advisera.com/27001academy/blog/2014/06/02/major-vs-minor-nonconformities-in-the-certification-audit/
And in this webinar we also talk about the definition of nonconformities, how you write corrective action request and more issues related to an audit, I hope that this webinar help you "Internal audit: How to conduct it according to ISO 27001 and ISO 22301/BS 25999-2" : https://advisera.com/27001academy/webinars/ -
ISO 27001 courses for beginners
... r Course vs. Lead Implemented Course  Which one to go for? : https://advisera.com/27001academy/blog/2014/06/16/lead-auditor-course-vs-lead-implementer-course-which-one-to-go-for/
Finally, all our resources (articles, webinars, ebooks, templates, etc) will give you a knowledge about information security (and also business continuity) that you can use to acquire knowledge and become a consultant or lead auditor of ISO 27001. So, we recommend you to review all our resources, and please feel free to ask us any doubt. -
Pre-certification audit
... u ÂMajor vs. Minor nonconformities in the certification audit : https://advisera.com/27001academy/blog/2014/06/02/major-vs-minor-nonconformities-in-the-certification-audit/
Finally, regarding to the example of ISMS, you can see our templates (you can see a free version clicking on ÂFree Demo tab): https://advisera.com/27001academy/iso-27001-documentation-toolkit/ -
Number of ISO 27001 certificates
... ld. You can filter here by your country and the ISO 27001 (it is only available until year 2013): https://www.iso.org/the-iso-survey.html?certificate=ISO/IEC%2027001&countrycode=#standardpick
Also you can download a PDF with all results. Regarding 27001:2005 vs ISO 27001:2013, the lasts results of ISO are related to ISO 27001:2005, so maybe you will need to wait this year to see the number of ISO 27001:2013 certificates published in the world. -
Strategic and operational risks
... p>... d by top management.
What are your thoughts re this please?
ÃÂ
Answer:
I think that your approach (strategic and operational risks) is correct, according to ISO 27000:2014, the risk owner is ÃÂperson or entity with accountability and authority to manage a riskÃÂ.ÃÂ
For more information about this, please read this article ÃÂRisk owners vs. Asset owners in ISO 27001:2013ÃÂ : https://advisera.com/27001academy/knowledgebase/risk-owners-vs-asset-owners-in-iso-270012013/ -
ISO 27001 Lead Auditor Course
... or Course vs. Lead Implementer Course  Which one to go for? : https://advisera.com/27001academy/blog/2014/06/16/lead-auditor-course-vs-lead-implementer-course-which-one-to-go-for/
2.- It depends on the company or the trainer, but I think that an estimation can be between $1.000-3000 (40-50 hours)
3.- You can go to the lead auditor course
4.- There are different things. Professional Evaluation and Certification Board (PECB) is an American personnel certification body, while American National Standards Institute (ANSI) is the official US representative of the International Organization for Standardization (ISO) which is related to the certification of companies. So, if you are interested in a personal certification, you can perform a PECB official exam, and you will the accreditation of a US company. For more information about certification for persons vs. organizations, please read this article ÂISO 27001 certification for persons vs. organizations : https://advisera.com/27001academy/iso-27001-certification/
5.- Depends on the company. Probably in your country there are various companies that perform the course/exam that you want in a local language. Anyway, keep in mind that we have resources in various languages, for example you can see this free webinar ÂISO 27001 Lead Auditor Course preparation training : https://advisera.com/training/iso-27001-lead-auditor-course/
6.- ENISA is the European Union Agency for Network and Information Security, and I think that there you can find information about conferences: https://www.enisa.europa.eu -
Registered Implementer
... p>... exam.
ÃÂ
Answer:
I suppose that you know that there are no accreditations for the Lead Implementer course, so maybe can be interesting for you the ISO 27001 Lead Auditor course, because it has accreditations. Anyway, we do not have specific information about the exam of the Implementer course, but I think that this article can help you ÃÂLead Auditor Course vs. Lead Implementer Course ÃÂ Which one to go for?ÃÂ : https://advisera.com/27001academy/blog/2014/06/16/lead-auditor-course-vs-lead-implementer-course-which-one-to-go-for/ -
ISO software
... ... s or could recommend any other software?
ÃÂ
Answer:
Sorry but we do not have information about this tool, keep in mind that to have a tool in your Management System is not mandatory, anyway this article can be interesting for you ÃÂWhen to use tools for ISO 27001/ISO 22301 and when to avoid themÃÂ : https://advisera.com/conformio/blog/2021/06/24/toolkit-vs-conformio-which-is-more-applicable-for-my-company/