Clause 4.2 that will lead to the Mandatory document of control A.18.1.1
Assign topic to the user
I’m assuming you meant to say “Identification of applicable legislation and contractual requirements” for control A.18.1.1 ( “Inventory of assets” is the control A.8.1.1, and it is not directly related to clause 4.2 - Understanding the needs and expectations of interested parties).
To see a document that can fulfill control A.18.1.1, please take a look at this free demo: https://advisera.com/27001academy/documentation/list-of-legal-regulatory-contractual-and-other-requirements/
These articles will provide you a further explanation about the identification of legal requirements:
- How to identify interested parties according to ISO 27001 and ISO 22301 https://advisera.com/27001academy/knowledgebase/how-to-identify-interested-parties-according-to-iso-27001-and-iso-22301/
- How to identify ISMS requirements of interested parties in ISO 27001 https://advisera.com/27001academy/blog/2017/02/06/how-to-identify-isms-requirements-of-interested-parties-in-iso-27001/
Comment as guest or Sign in
Aug 19, 2021