Compliance with monitoring and measurement requirement
What would be the compliance with the monitoring and measurement requirement? Were they indicators?
Assign topic to the user
I assume you are referring to ISO 27001 clause 9.1 or ISO 22301 clause 9.1.
Measuring means that you set certain objectives (e.g. maximum number of incidents) and that you evaluate if your achieved numbers are within your expectations.
Monitoring means that you track the performance of a particular process or a system (e.g. log activity) and you react if the trends are out of the ordinary.
These materials will help you learn more:
- article How to perform monitoring and measurement in ISO 27001 https://advisera.com/27001academy/blog/2015/06/08/how-to-perform-monitoring-and-measurement-in-iso-27001/
- free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/
Comment as guest or Sign in
Dec 21, 2020