Guest user Created: Aug 14, 2018 Last commented: Aug 14, 2018

Defining scope

Is it important to certify all systems regarding ISO 27001, or can I select specific system/application to apply certification?

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Aug 14, 2018

Answer:

Your organization can include all or only part of its systems in an ISO 27001 certification. This decision will depend mostly of the organizations objectives and the legal requirements it has to be compliant with.

These articles will provide you further explanation about scope definition:
- How to define the ISMS scope https://advisera.com/27001academy/knowledgebase/how-to-define-the-isms-scope/
- Problems with defining the scope in ISO 27001 https://advisera.com/27001academy/blog/2010/06/29/problems-with-defining-the-scope-in-iso-27001/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Aug 14, 2018

Expert Advice Community

Defining scope

Defining scope

Assign topic to the user

Comment as guest or Sign in

Suggested Topics

Defining scope of application and scope for ISMS

Defining scope

Defining Scope