SPRING DISCOUNT
Get 30% off on toolkits, course exams, and Conformio yearly plans.
Limited-time offer – ends April 25, 2024
Use promo code:
SPRING30

Expert Advice Community

Home / ISO 27001 & 22301 / Information Systems Audit Control

Guest

Information Systems Audit Control

ISO 27001 & 22301
  Quote
Guest
Guest post Created:   Jan 12, 2016 Last commented:   Jan 12, 2016

Information Systems Audit Control

ISO 27001 & 22301
I would like to know exactly how to implmeent The control 15.3.1 of ISO 27001 (Information systems audit controls) Is it about logging users activities on systems ? thanks in advance
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.
Guest
DejanK Jan 12, 2016

Control A.15.3.1 you refer to is from the old 2005 revision of ISO 27001 - in new 2013 revision almost the same control exists under A.12.7.1.

This control is not about logging user activities; this control is on how to plan the audits of your information systems in order to minimize the disruption to business processes; in other words, you have to perform your audits carefully, in order not to corrupt your operational systems.

By the way, you'll find the best guidance in the ISO 27002 standard.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jan 12, 2016

Jan 12, 2016

Suggested Topics
Guest user Created:   Apr 29, 2020 ISO 27001 & 22301
Replies: 1
0 1

A.12.7.1 Information Systems Audit Controls
Guest user Created:   Sep 24, 2021 ISO 27001 & 22301
Replies: 1
0 0

Documentation of requirements
Guest user Created:   Jul 13, 2018 ISO 27001 & 22301
Replies: 1
0 0

Documentation of control A.12.7.1