Expert Advice Community

Guest

Information Security Objectives

  Quote
Guest
Guest user Created:   Jul 04, 2019 Last commented:   Jul 04, 2019

Information Security Objectives

Does ISO 27001 prescribe a minimum amount of information security objectives? This is regarding the Information Security Policy and the Measurement Report.
0 0

Assign topic to the user

ISO 22301 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 22301 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Jul 04, 2019

Answer:

ISO 27001 does not prescribe a minimum amount of information security objectives, so each organization can define as many objectives as they see fit for their business. Normally 3 to 4 objectives allow an ISMS to support properly the business (e.g., one operational objective, one financial objective, one business objective, and one compliance objective).

This article will provide you further explanation about information security objectives:
- ISO 27001 control objectives – Why are they important? https://advisera.com/27001academy/blog/2012/04/10/iso-27001-control-objectives-why-are-they-important/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jul 04, 2019

Jul 04, 2019

Suggested Topics