Expert Advice Community

Define and formalize a Top Management involvement strategy

  Quote
Pedro Carneiro Created:   Sep 17, 2020 Last commented:   Sep 18, 2020

Define and formalize a Top Management involvement strategy

Hello,

Can you please advise me how to define and formalize a top management involvement strategy?

0 0

Assign topic to the user

Assign

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Sep 18, 2020

In ISO 27001, the involvement of top management is defined and documented in the Information Security Policy. The definition of top management involvement must consider the expected objectives from the ISMS, as well as the business objectives and strategies.

To see how an Information Security Policy looks like, see: https://advisera.com/27001academy/01academy/emy/ademy/my/documentation/information-security-policy/

These articles will provide you a further explanation about the Information Security Policy:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Sep 16, 2020

Sep 18, 2020

Suggested Topics

Atul Kamat Created:   Jul 26, 2021 ISO 27001 & 22301
Replies: 3
0 0

Incident Management

Guest user Created:   Jul 22, 2021 ISO 27001 & 22301
Replies: 1
0 0

Key management template