Aug 01, 2019
Aug 02, 2019
Implementing ISMS in other Business Dept.
I have implemented ISO 27001 in IT dept. as scope and I have successfully implemented and got certified.Now I need to increase my scope to other departments. I need to know how can I do it ? How I will go the gap assessment ? What are the controls that I should do the gap assessment as most of the information processing systems lie within the IT dept.
What information I have to protect as the information within other dept. will be confined to paper assets. Please advise me what approach should I take to extend my scope.
Assign topic to the user
Please select user.