Guest
Implementation controls
As part of buying the official ISO 27001 standard (We already know you do not sell it), must we buy also the Implementation controls or just the requirements? We would appreciate your quick answer.
Assign topic to the user
Expert
Rhand Leal
Apr 06, 2022
I’m assuming you are referring to ISO 27002, the standard which provides guidance for the implementation of controls requirements defined in ISO 27001 Annex A.
Considering that, please note that ISO 27002 is not mandatory to implement ISO 27001. ISO 27002 is usually used by consultants who want to learn more about the standard.
This article will provide you with a further explanation of ISO 27001 and ISO 27002:
- ISO 27001 vs. ISO 27002 https://advisera.com/27001academy/knowledgebase/iso-27001-vs-iso-27002/
Comment as guest or Sign in
Apr 06, 2022
Apr 06, 2022
Apr 06, 2022