BLACK FRIDAY DISCOUNT
Get 30% off on toolkits, course exams, Conformio, and Company Training Academy yearly plans.
Limited-time offer – ends December 2, 2024
Use promo code:
30OFFBLACK

Expert Advice Community

Define and formalize a Top Management involvement strategy

  Quote
Pedro Carneiro Created:   Sep 17, 2020 Last commented:   Sep 18, 2020

Define and formalize a Top Management involvement strategy

Hello,

Can you please advise me how to define and formalize a top management involvement strategy?

0 0

Assign topic to the user

ISO 22301 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 22301 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Sep 18, 2020

In ISO 27001, the involvement of top management is defined and documented in the Information Security Policy. The definition of top management involvement must consider the expected objectives from the ISMS, as well as the business objectives and strategies.

To see how an Information Security Policy looks like, see: https://advisera.com/27001academy/documentation/information-security-policy/

These articles will provide you a further explanation about the Information Security Policy:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Sep 16, 2020

Sep 18, 2020

Suggested Topics