Guest
Information security management policy vs information security policy
Is the Information security management system policy the same thing as the information security policy?
Assign topic to the user
Expert
Dejan Kosutic
Sep 04, 2018
Answer:
Yes, in the context of ISO 27001 this is the same document - such a document defines top-level management intent regarding information security and general roles and responsibilities.
Detailed security rules are usually written through detailed policies, for example in our toolkit you will see IT Security Policy that describes detailed general rules for all employees.
Comment as guest or Sign in
Sep 04, 2018
Sep 04, 2018
Sep 04, 2018