Expert Advice Community

Guest

Human Resources Policy

  Quote
Guest
Guest user Created:   Oct 05, 2021 Last commented:   Oct 05, 2021

Human Resources Policy

My new organization has a lot of Human Resources policies like diversity and inclusivity policy, Car allowance policy, Dress code policy, etc., while ISO 27001 Human Resources security policies deals only with prior, during and after employment security.

1 - In designing an ISMS to ISO 27001 standards, are this non security related policies included or excluded?

2 - Another question. My new organization uses the Plan-Do-Check-Act (PDCA) to write individual security policies like the business continuity management policy etc.
My understanding is that the PCDA model is for the structure of the ISMS and not for individual policies. Am I wrong?

0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Oct 05, 2021

1 - In designing an ISMS to ISO 27001 standards, are this non security related policies included or excluded?

You need to evaluate if these policies define some sort of usage or handling of information included in the ISMS scope (for example, the Car Allowance Policy may require the user to provide information about his driver's license, and this information is included in the ISMS scope). The policies which define usage or handling of information Included in the ISMS scope need to be included in the ISMS design.

2 - Another question. My new organization uses the Plan-Do-Check-Act (PDCA) to write individual security policies like the business continuity management policy etc.
My understanding is that the PCDA model is for the structure of the ISMS and not for individual policies. Am I wrong?

The PDCA model can be used either for the structure of the ISMS and for the development of individual documents, such as policies and procedures.

For further information, see:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Oct 05, 2021

Oct 05, 2021

Suggested Topics

Guest user Created:   Aug 11, 2020 ISO 27001 & 22301
Replies: 1
0 0

ISO scope

Guest user Created:   Sep 15, 2021 ISO 27001 & 22301
Replies: 1
0 0

ISO27001 Implementation

Guest user Created:   Jun 23, 2021 ISO 27001 & 22301
Replies: 5
0 0

ISO 27001 documents