External and environmental threats
How to protect against external and environmental threats according to ISO 27001. and what are the steps that I need to consider? A.11.1.4
Assign topic to the user
ISO 27001 does not prescribe ways to implement controls, only the objective to be achieved. For guidance on implementing this control, you should consider ISO 27002, a supporting standard that provides guidelines for implementation of controls from ISO 27001 Annex A.
Common solutions to implement this control are:
- Construction hardening (e.g., reinforcement of walls, doors, and windows, possibility to access multiple providers of the same service, etc.)
- Crime Prevention Through Environmental Design (CPTED) (e.g., natural surveillance/access control)
This article will provide you a further explanation about the application of control A.11.1.4:
- How to protect against external and environmental threats according to ISO 27001 A.11.1.4 https://advisera.com/27001academy/blog/2016/01/25/how-to-protect-against-external-and-environmental-threats-according-to-iso-27001-a-11-1-4/
Comment as guest or Sign in
May 13, 2020