Start a new topic and get direct answers from the Expert Advice Community.
CREATE NEW TOPIC +Search results for "iso17025 vs gmp"
1220 results
Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Requirements of ISO 27001 to be implemented by the CSP
... y/free-downloads
2 - Also, we host PII information in the cloud. Do we need to comply against any specific ISO standards in addition to 27001? Appreciate your inputs.
Answer: There is no requirement to comply to any other ISO standard. However, if you want, you can implement ISO 27018 which describes protection of PII in the cloud. See this article: ISO 27001 vs. ISO 27018 â Standard for protecting privacy in the cloud https://advisera.com/27001academy/blog/2015/11/16/iso-27001-vs-iso-27018-standard-for-protecting-privacy-in-the-cloud/ -
Selecting qualified ISO 27001 certification auditors
... editation vs. certification vs. registration in the ISO world https://advisera.com/articles/accreditation-vs-certification-vs-registration-in-the-iso-world/
- How to choose a certification body https://advisera.com/blog/2021/01/11/how-to-choose-an-iso-certification-body/
These materials will also help you regarding the certification process:
- Preparing for ISO Certification Audit: A Plain English Guide https://advisera.com/books/preparing-for-iso-certification-audit-plain-english-guide/
- Free webinar â ISO 27001/ISO 22301: The certification process https://advisera.com/27001academy/webinar/iso-27001iso-22301-certification-process-free-webinar-demand/ -
ISO 9001, CMMI and ISO 27001
Both CMMI and ISO 9001 aim at improving process quality. The fundamental difference between CMMI vs ISO 9001 is conceptual. CMMI is a process model and ISO 9001 is an audit standard.
CMMI is a set of related "best practices" derived from industry leaders and relates to product engineering and software development. Businesses receive CMMI ratings from Level 1 to Level 5 depending upon the extent of compliance to key performance areas specified in the selected CMMI process area.
ISO 9001 is a certification tool that certifies businesses whose processes conform to the laid down standards. Implementing ISO 9001 doesn't mean that you are compliant with CMMI, although it can be a good foundation for implementing CMMI.
What is your advice on implementing an enterprise quality assurance framework, in a nut shell? Does it sound correct, if I propose that use ISO 9001:2015 as overarching quality assura nce framework, where apply ISO 27001 for its information security?
ISO 9001 and ISO 27001 have their own purposes, ISO 9001 deals with quality while ISO 27001 is focusing on information security. They are complementary and can be implemented and maintained together as an integrated management system. For more information, see: How to integrate ISO 9001 and ISO 27001 https://advisera.com/9001academy/blog/2016/09/27/how-to-integrate-iso-9001-and-iso-27001/ -
ISO 9001 vs IATF 16949 transition
Our Company was TS 16949 and now we a transiting to ISO:9001:2015. The question has keep up do we need to keep APQP for new product. I have been ask to to provide information on the requirement. I responded the section 8.2.3 thru 8.2.3.2. -
Required documentation vs documented process
I'd like to know of a difference of wording "Required documentation" and " Required documented processes." -
Minor non conformity
... > - Major vs. minor nonconformities in the certification audit https://advisera.com/27001academy/blog/2014/06/02/major-vs-minor-nonconformities-in-the-certification-audit/
- ISO 27001 Certification: Whatâs next after receiving the audit report?
This m aterial will also help you regarding minor non conformities:
- Preparing for ISO Certification Audit: A Plain English Guide https://advisera.com/books/preparing-for-iso-certification-audit-plain-english-guide/ -
Gap Analysis AS9100 Rev C vs Rev D
"Please provide gap analysis btw AS rev c and AS rev d" -
ISO 27001 requirements
... ISO 27001 vs. ISO 27002 https://advisera.com/27001academy/knowledgebase/iso-27001-vs-iso-27002/
- How to implement equipment physical protection accordi ng to ISO 27001 A.11.2 â Part 1 https://advisera.com/27001academy/blog/2016/04/18/how-to-implement-equipment-physical-protection-according-to-iso-27001-a-11-2-part-1/
- How to implement equipment physical protection according to ISO 27001 A.11.2 â Part 2 https://advisera.com/27001academy/blog/2016/04/26/how-to-implement-equipment-physical-protection-according-to-iso-27001-a-11-2-part-2/
- Physical security in ISO 27001: How to protect the secure areas https://advisera.com/27001academy/blog/2015/03/23/physical-security-in-iso-27001-how-to-protect-the-secure-areas/
These materials will also help you regarding ISO 27001 and ISO 27002:
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
- Free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/ -
Emergency vs Disaster Management
I am confused about the difference between emergency response management and disaster recovery management...from definition and process perspectives -
Shall and should in ISO 27001 standard
... esigned to be used as support to ISO 27001, or as a separated standard to support the implementation of security best practices, without enforcing them. That's why ISO 27002 replaces the word "shall" by "should"in the description of the controls objectives.
This article will provide you further explanation about the differences between ISO 27001 and 27002:
- ISO 27001 vs. ISO 27002 https://advisera.com/27001academy/knowledgebase/iso-27001-vs-iso-27002/