Expert Advice Community

Home / ISO 27001 & 22301 / Information Security Objectives

Guest

Information Security Objectives

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Jul 04, 2019 Last commented:   Jul 04, 2019

Information Security Objectives

ISO 27001 & 22301
Does ISO 27001 prescribe a minimum amount of information security objectives? This is regarding the Information Security Policy and the Measurement Report.
0 0

Assign topic to the user

ISO 27001 INFORMATION SECURITY POLICY

Define the main rules for information security management.

ISO 27001 INFORMATION SECURITY POLICY

Define the main rules for information security management.
Expert
Rhand Leal Jul 04, 2019

Answer:

ISO 27001 does not prescribe a minimum amount of information security objectives, so each organization can define as many objectives as they see fit for their business. Normally 3 to 4 objectives allow an ISMS to support properly the business (e.g., one operational objective, one financial objective, one business objective, and one compliance objective).

This article will provide you further explanation about information security objectives:
- ISO 27001 control objectives – Why are they important? https://advisera.com/27001academy/blog/2012/04/10/iso-27001-control-objectives-why-are-they-important/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jul 04, 2019

Jul 04, 2019

Suggested Topics
Lajvar Created:   Feb 14, 2021 ISO 27001 & 22301
Replies: 1
0 0

Information security objectives
Guest user Created:   Aug 09, 2016 ISO 27001 & 22301
Replies: 7
0 0

Should information security objectives be measurable?