Guest
7.2 Competence
According to Clause 7.2 Competence - ISO 27001-13
a)determine the necessary competence of person(s) doing work under its control that affects its information security performance;
d) retain appropriate documented information as evidence of competence.
For example the competence of CISO would affect its IS performance so should it be recorded,what type of information should be documented
Eagerly awaiting replys,
Thanks,
Itommy
Assign topic to the user
Itommy,
Example of necessary competence could be a training plan, while example of evidence of competence could be a certificate issued at the training.
See also this article: How to perform training & awareness for ISO 27001 and ISO 22301 https://advisera.com/27001academy/blog/2014/05/19/how-to-perform-training-awareness-for-iso-27001-and-iso-22301/
Comment as guest or Sign in
Jan 12, 2016
Jan 12, 2016
Jan 12, 2016