ISMS maintenance
Assign topic to the user
Answer: For ensure the maintenance of a certified ISMS you should cover these general points:
1 - ensure that all the activities described in your policies and procedures are performed accordingly
2 - ensure monitoring and measurement of ISMS performance
3 - perform internal audits, management review, and corrective actions
And inside all these points you must ensure risk assessments are reviewed and documentation is updated, or you may finish with an obsolete ISMS.
This article will provide you further explanation about ISMS maintenance:
- How to maintain the ISMS after the certification https://advisera.com/27001academy/blog/2014/07/14/how-to-maintain-the-isms-after-the-certification/
These materials will also help you regarding ISMS maintenance:
- Book ISO 27001 Risk Managemen t in Plain English https://advisera.com/books/iso-27001-annex-controls-plain-english/
- Managing ISO Documentation: A Plain English Guide https://advisera.com/books/managing-iso-documentation-plain-english-guide/
Comment as guest or Sign in
Feb 19, 2017