Guest
ISMS Policy vs Information Security Policy
Are the ISMS Policy vs Information Security Policy the same or different polices?
Assign topic to the user
Expert
Rhand Leal
Apr 22, 2022
These are the same policies.
This confusion comes because ISO 27001:2013 defines that the top-level policy should be called "Information Security Policy", however, the old 2005 revision of ISO 27001 called this document "ISMS Policy".
See also this article: One Information Security Policy, or several policies? https://advisera.com/27001academy/blog/2013/06/18/one-information-security-policy-or-several-policies/
Comment as guest or Sign in
Apr 22, 2022
Apr 22, 2022
Apr 22, 2022