Guest post Created: Jan 12, 2016 Last commented: Jan 12, 2016

Does all the Policies and procedured need to be in Word/PDf format?

Does all the Policies and procedured need to be in Word/PDf format?. I am right now preparing a communication policy. As per ISO 27001, commuication policy should define who, wat, when and how to comunicate. Can i maintain all these in the excel file, just like shown below. Will that be accepted as a policy? or is there a better way.... What to Communicate When To Whom How Who shall Communicate Records Owner Internal Audit Plan As per the periodicity defined in IQA PL's eMail SQA Internal Audit Records SQA

0 0

Assign topic to the user

Select user

Guest

AntonioS Jan 12, 2016

The standard ISO 27001 does not establish the format of the documents, but we recommend you to use always the same format at least for the procedures (and Excel for records). Anyway, if you want to have a procedure or a policy in Excel format it is not a problem for the standard.

Also this article about the list of mandatory documents (and non mandatory) can be interesting for you "List of mandatory documents required by ISO 27001 (2013)": https://advisera.com/27001academy/knowledgebase/list-of-mandatory-documents-required-by-iso-27001-2013-revision/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Jan 12, 2016

Expert Advice Community