Assignment of documents
Hello,
we use XYZ as our document management system. I have mapped the structure of the ISO 27001 Standard in XYZ.
This means that I store all documents of the nom chapter 4.1 in XYZ. I now have the problem that I did not know where to file documents for Annex A. So the password policy concerns the sections A.9.2.1, A.9.2.2, A.9.2.4, A.9.3.1, A.9.4.3. But how and where do I store them in XYZ? Does this belong in separate subchapters of chapters 8.1 or how do I do it best?
I would be pleased about quick feedback
Assign topic to the user
ISO 22301 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
ISO 22301 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
ISO 22301 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
Considering your folder structure, I'd suggest that you create an additional folder called "Annex A -Security controls", like the one you have in the toolkit and include policies and procedures there. You can create this folder either as folder 11 or as a subfolder in folder 8.
Please note that ISO 27001 does not prescribe how to organize the documents, so you are free to organize them the best suit you.
Comment as guest or Sign in
Feb 21, 2020