Get 2 Documentation Toolkits for the price of 1
Limited-time offer – ends March 28, 2024

Expert Advice Community

Guest

Controls from Annex A

  Quote
Guest
Guest user Created:   Oct 23, 2019 Last commented:   Oct 23, 2019

Controls from Annex A

 Referente al paquete de documentación que adquirimos con ustedes, leí que se puede tener asesoramiento vía email, le comento que ya empezamos a trabajar con la documentación de ISO 27001, pero nos surgen muchas dudas respecto a la lista de controles del anexo A, respecto a eso tengo un par de preguntas:

    ¿Existe documentación por parte de Advisera especifica que englobe los controles del Anexo A?
    ¿Es necesario un documento especifico para cada uno de los 114 controles?

(Regarding the documentation package that we acquired with you, I read that you can have advice via email, I comment that we have already started working with the ISO 27001 documentation, but we have many doubts regarding the list of controls in Annex A, regarding I have a couple of questions:

1 - Is there a documentation by specific Advisera that encompasses the controls in Annex A?

2 - Is a specific document necessary for each of the 114 controls?)

0 1

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Oct 23, 2019

1 - Is there a documentation by specific Advisera that encompasses the controls in Annex A?

Answer: In your toolkit the documents which cover controls from Annex A are located on Folder 08 Annex A Aecurity controls. To know which document covers which control, please see the List of documents file included in your toolkit.

Additionally, at Advisera site you have access to several articles and free downloadable materials covering controls from ISO 27001 Annex A (without more details about your needs we cannot point specific material, but feel free to send additional emails with specific doubts).

2 - Is a specific document necessary for each of the 114 controls?

Answer: ISO 27001 does not require you to document each and every control - in the List of documents that you received together with your toolkit you will see which documents are mandatory, and which are not.

In the toolkit you bought you have not only documents covering the mandatory requirements of the standard, but also documents covering the most common controls and practices adopted.

These articles will provide you further explanation about mandatory documents and controls from Annex A:

- List of mandatory documents required by ISO 27001 (2013 revision) https://advisera.com/27001academy/knowledgebase/list-of-mandatory-documents-required-by-iso-27001-2013-revision/
- Overview of ISO 27001:2013 Annex A https://advisera.com/27001academy/iso-27001-controls/
- How to structure the documents for ISO 27001 Annex A controls https://advisera.com/27001academy/blog/2014/11/03/how-to-structure-the-documents-for-iso-27001-annex-a-controls/
- The basic logic of ISO 27001: How does information security work? https://advisera.com/27001academy/knowledgebase/the-basic-logic-of-iso-27001-how-does-information-security-work/
- Where to start from with ISO 27001 https://advisera.com/27001academy/knowledgebase/iso-27001-where-to-start-most-important-materials/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Oct 23, 2019

Oct 23, 2019