Expert Advice Community

Guest

Does the scope exclusions allow in 27001:2013

  Quote
Guest
Guest post Created:   Jan 12, 2016 Last commented:   Jan 12, 2016

Does the scope exclusions allow in 27001:2013

Does the scope exclusions still allow in 27001:2013's scope? In "IRCA Technical Review Briefing Note ISO 27001" Page 6 4.3 say that no exclusions allow Thank you very much
0 0

Assign topic to the user

ISO 27001 ISMS SCOPE DOCUMENT

Define the boundaries of ISMS for ISO 27001.

ISO 27001 ISMS SCOPE DOCUMENT

Define the boundaries of ISMS for ISO 27001.

Guest
DejanK Jan 12, 2016

Chattavut,

ISO 27001:2013 allows the scope of the ISMS to defined per the company decision - there are no restrictions whatsoever to which part of the company your ISMS is implemented. However, ISO 27001:2013 says that you need to implement all the clauses of the standard from 4 to 10 - you cannot exclude any of these clauses from the implementation.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jan 12, 2016

Jan 12, 2016

Suggested Topics

Guest user Created:   Dec 20, 2020 ISO 27001 & 22301
Replies: 1
0 0

Is PII Information?

Guest user Created:   Oct 21, 2023 ISO 27001 & 22301
Replies: 1
0 0

Exclusions of the ISMS scope