Taking the ISO 27001 certification exam?
Get a bundle with FREE Live Virtual Training
(regular price US$ 199)
LIMITED-TIME OFFER – EXPIRES ON MAY 17, 2022

Expert Advice Community

Guest

Combining the ISO 27001 policies into one manual

  Quote
Guest
Guest user Created:   Oct 29, 2021 Last commented:   Oct 29, 2021

Combining the ISO 27001 policies into one manual

Hi Dejan, I hope you are well? I have been requested by one of my seniors to combine all of the ISO27001 into one manual handbook. I was wondering is this practice a good idea? Also if its ok to do how does this apply to version controls and review etc. As always you and your team’s advice is highly respected and regarded.
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Oct 29, 2021

Although it is acceptable by the standard to combine all of the ISO27001 documents into one manual handbook, in most cases, it is not a good idea, because if you put all the policies and procedures into a single document this will make the reading of such a document very difficult.

Regarding version control and review, they would be performed the same way if documents are separately documented, but updated information will be consolidated in a single document.

This article will provide you a further explanation about ISMS Manual:

This material will also help you regarding ISMS documentation:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Oct 29, 2021

Oct 29, 2021