Tag: "ISO27001" - Expert Advice Community

Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Assign topic to the user

Assign
  • ISMS scope - Not interested in ISO27001 accreditation

    This is the first phase of ISO27001 for us. We dont plan on seeking certification but interested to align our environment to ISO27001.

    Is it complusary to done a scope? Can we just go about implementing ISO27001 for our whole environment. We are a small orgnisation but getting bigger. 

    The idea is to initially implement ISO27001 framework orgnisation wide so when we expend we have good practices in place that will allow us to build on (expand on)

    Do you see any risk/concerns with this approch? Is there a better way to go about? What are your recommendation?

  • Disposal and Destruction Policy issue

    Can I remove the need for registering the disposal or destruction of confidential material from my Disposal and Destruction Policy and still comply with ISO 27001 ?