Classification of assets
Assign topic to the user
Answer:
I'm assuming you are referring to ISO 27001. Considering that, assets are classified based on the information they store, transmit or process, which in turn are classified in terms of legal requirements, value to the organization, criticality and sensitivity to unauthorized disclosure or modification.
For example, a storage unit which stores public and confidential information must be classified as confidential, because this is the highest classification of information it handles.
This article will provide you further explanation about asset inventory:
- How to handle Asset register (Asset inventory) according to ISO 27001 https://advisera.com/27001academy/knowledgebase/how-to-handle-asset-register-asset-inventory-according-to-iso-27001/
These materials will also help you regarding asset inventory:
- ISO 27001 Annex A Controls in Plain English https://advisera.com/books/iso-27001-annex-controls-plain-english/
- Free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/
Comment as guest or Sign in
Feb 01, 2019