Expert Advice Community

Guest

Information security policy review

  Quote
Guest
Guest user Created:   Dec 28, 2022 Last commented:   Dec 28, 2022

Information security policy review

How do information security incidents impact information security policy (approved by Top Management)?

0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Dec 28, 2022

Depending upon the quantity and severity of information security incidents, you should review some elements of the Information Security Policy, such as:

  • risk management: are the process steps and acceptance criteria properly defined?
  • responsibilities: responsibilities for implementation, maintenance properly assigned
  • support: all required resources to implement and improve information security are available

Please note that in most cases the information security incidents will point to minor adjustments in specific controls or processes.

For further information, see:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Dec 28, 2022

Dec 28, 2022

Suggested Topics

Ash Created:   Jan 21, 2024 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 Internal Audits

Guest user Created:   Oct 04, 2023 ISO 27001 & 22301
Replies: 1
0 0

Conformio questions