Expert Advice Community

Guest

Filling SoA

  Quote
Guest
Guest user Created:   Nov 27, 2019 Last commented:   Nov 27, 2019

Filling SoA

Meses atrás tuvimos una call para hablar sobre el proceso de certificación. Revisando Conformio encuentro un campo “Objetivos de Control” sobre el cual no tengo mucha claridad para diligenciarlo. Por lo anterior, agradezco si me puedes compartir algunos ejemplos de la información que debe ir en este campo.

0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Nov 27, 2019

Months ago we had a call to talk about the certification process. Reviewing Conformio I find a “Control Objectives” field on which I don't have much clarity to fill it out. For the above, I appreciate if you can share some examples of the information that should go in this field.

If I understood correctly, this field is part of the Statement of Applicability (SoA). Considering that, common practice is that the text of control objectives from ISO 27001 can be used (ISO organization does not seem to have a problem with such an approach, however, you should not copy anything else from the standard). 

An example for control A.7.1.1 (Screening) would be: "To ensure that employees and contractors understand their responsibilities and are suitable for the roles for which they are considered."

This article will provide you further explanation about Statement of Applicability:
- The importance of Statement of Applicability for ISO 27001 https://advisera.com/27001academy/knowledgebase/the-importance-of-statement-of-applicability-for-iso-27001/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Nov 27, 2019

Nov 27, 2019

Suggested Topics

Guest user Created:   Sep 10, 2019 ISO 27001 & 22301
Replies: 1
0 0

Filling SoA

Guest user Created:   Sep 09, 2019 ISO 27001 & 22301
Replies: 1
0 0

Filling SoA justification

Guest user Created:   Aug 24, 2019 ISO 27001 & 22301
Replies: 3
0 0

Filling SoA