Include ISMS documents in the inventory asset?
Assign topic to the user
Answer:
I am not sure what you mean, but documents, procedures, guides, etc are files in PDF, Word, Excel, and other formats (including documents in paper and other forms) which are information asset type, so yes, you can include them in your inventory of assets. For more information about the inventory of assets, please read this article “How to handle Asset register (Asset inventory) according to ISO 27001” : https://advisera.com/27001academy/knowledgebase/how-to-handle-asset-register-asset-inventory-according-to-iso-27001/
If your question is about if each document needs to be listed separately in the inventory of assets, from my point of view is better if you have a single asset for all documents of the ISMS, because threats/vulnerabilities and risks are the same for all these documents.
By the way, in our online course you can also find more information about the inventory of assets “ISO 27001:2013 Foundations Course” : https://advisera.com/training/iso-27001-foundations-course/
Comment as guest or Sign in
Mar 18, 2016