Expert Advice Community

Guest

A.12.6.1 Management of Technical Vulnerabilities

  Quote
Guest
Guest user Created:   Apr 17, 2020 Last commented:   Apr 17, 2020

A.12.6.1 Management of Technical Vulnerabilities

Hi I'm a customer with a question - is there anything specific regarding patching in the toolkit that we purchased. I see that the ISO has a standard: A.12.6.1 Management of Technical Vulnerabilities but not sure there's this document in the toolkit

0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Apr 17, 2020

Since patching involves changes in the environment, you should take a look at the Change Management Policy template include in your toolkit, on folder 08 Annex A Security Controls >> A.12 Operations Security, to see if it can fulfill your needs.

Regarding control A.12.6.1, there is no template covering this specific clause.

Please note that Advisera's ISO 27001 Documentation Toolkit does not have a document for each and every control from ISO 27001 because of the following reasons:

  1. ISO 27001 does not require each and every control to be documented
  2. If the toolkit had a document for each control, there would be too many documents, and this would be an overkill for smaller and mid-size companies.

Since our target are SMEs, we have decided to include an optimum amount of documents for companies of this size - the toolkit includes:

  • All the mandatory documents - e.g. Information Security Policy, Statement of Applicability, Risk Assessment Methodology, Access Control Policy, etc.
  • Documents that are not mandatory, but are commonly used - e.g. BYOD Policy, Classification Policy, Password Policy, Backup Policy, etc.

In case you identify you really need to apply control A.12.6.1, you can contact our support by email, or on scheduled online meeting (https://advisera.com/27001academy/consultation/), so one of our experts can help you on how to better evidence this control implementation.

For further information, see:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Apr 17, 2020

Apr 17, 2020

Suggested Topics