Guest
Annex A18 controls in the documentation toolkit
Considering your documentation toolkit, We are missing the following: Standard – A.18 Compliance, Objective A.18.2 Information Security Review, Requirement A.18.2.1 Independent review of security policy
Assign topic to the user
Expert
Rhand Leal
Dec 20, 2016
Answer: This A.18.2.1 control is covered in the toolkit by the internal audit procedure, which defines that internal auditors must be selected in such a way as to ensure objectivity and impartiality, i.e. to avoid conflict of interest, because auditors are not allowed to audit their own work.
Comment as guest or Sign in
Dec 20, 2016
Dec 20, 2016
Dec 20, 2016