Guest
Conformio - ISO 27001 Requirements
I saw that based on the risks or tasks created when preparing the corresponding documents in the requirements section it states to include them in the doc, is that being done by manually adding the references in the editable sections or is there a different method?
I have uploaded a screenshot as requested.
As you can see in the requirements it states to be sure to resolve the listed risks.
Should this be done by inserting some references in one of the editable portions or is it being done by the wizard in one of the steps?
Assign topic to the user
Expert
Rhand Leal
Jul 12, 2022
The treatment of the listed risks needs to be defined manually by the user when filling in the wizard. The wizard will only point out where in the document the customization needs to be done.
In this case, the customization needs to be done in section 3.4.
It needs to be performed manually because each organization may have its own way to treat the same list of risks.
Comment as guest or Sign in
Jul 12, 2022
Jul 12, 2022
Jul 12, 2022