Expert
Rhand Leal
Mar 12, 2021
First is important to note that the context of the organization is any internal or external factor that can affect the ISMS.
Considering that, concrete examples of elements of organizational context are:
- for external issues: geographical location, public infrastructure available, political, economic, social, and technological trends, etc.
- for internal issues: organizational culture, processes, and procedures, equipment, financial resources, etc.
Based on these you can identify elements that can help you understand how information security must be considered.
This article will provide you a further explanation about the Context of the organization for 27001:
- Explanation of ISO 27001:2013 clause 4.1 (Understanding the organization) https://advisera.com/27001academy/knowledgebase/how-to-define-context-of-the-organization-according-to-iso-27001/
These materials will also help you regarding the Context of the organization for 27001:
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 2700 1 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
- Free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/
Comment as guest or Sign in
Mar 12, 2021
Mar 12, 2021
Mar 12, 2021