I am coming near my audit for ISO 27001. The audit firm will be looking at the information in the image below. Can you please give guidance on how to meet the requirement in the red box?
Assign topic to the user
Please note that besides documents and records required by the standard, legal, statutory, and business requirements related to the ISMS may also require documents and records to be kept, such as:
- contracts
- blueprints and specifications
- manuals
Considering that, you need to identify legal, statutory, and business requirements related to your ISMS to identify documents and records that you need to present during the audit.
This article will provide you a further explanation about the identification of requirements:
- How to identify ISMS requirements of interested parties in ISO 27001 https://advisera.com/27001academy/blog/2017/02/06/how-to-identify-isms-requirements-of-interested-parties-in-iso-27001/
Comment as guest or Sign in
Sep 02, 2020