Hi Dejan, I hope you are well? I have been requested by one of my seniors to combine all of the ISO27001 into one manual handbook. I was wondering is this practice a good idea? Also if its ok to do how does this apply to version controls and review etc.
As always you and your team’s advice is highly respected and regarded.
Although it is acceptable by the standard to combine all of the ISO27001 documents into one manual handbook, in most cases, it is not a good idea, because if you put all the policies and procedures into a single document this will make the reading of such a document very difficult.
Regarding version control and review, they would be performed the same way if documents are separately documented, but updated information will be consolidated in a single document.
This article will provide you a further explanation about ISMS Manual: