Guest
Detailed explanation of 11 new security controls in ISO 27001:2022
As regards the below, related to the content of the email (article: https://advisera.com/27001academy/explanation-of-11-new-iso-27001-2022-controls/):
Silly question if other areas of ISO 27001 are not mandatory can we exclude these as well?
Or can we only exclude security controls if not mandatory or covered by legal/regulatory/contractual requirements?
Assign topic to the user
Expert
Rhand Leal
May 17, 2022
Only controls from ISO 27001 Annex A may be excluded. All requirements from clauses 4 to 10 are mandatory if you want to be compliant with ISO 27001.
For further information, see:
- Clause-by-clause explanation of ISO 27001 https://info.advisera.com/27001academy/free-download/clause-by-clause-explanation-of-iso-27001
Comment as guest or Sign in
May 17, 2022
May 17, 2022
May 17, 2022