Expert Advice Community

Guest

ISMS processes for personnel security

  Quote
Guest
Guest user Created:   Jul 24, 2019 Last commented:   Jul 24, 2019

ISMS processes for personnel security

What are the processes involved in ISMS as a security personnel?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Jul 24, 2019

Answer:

ISO 27001 ISMS processes are the same regardless to where they are applied once the ISMS scope is defined:
- Risk assessment and risk treatment, for identification of risks relevant to personnel security and definition of proper controls
- Controls implementation and operation, to effectively reduce risks to acceptable levels
- Performance evaluation, to check and verify if expected results are being achieved
- Improvement, by means of non conformities, corrective actions and continual improvement

Specifically for personnel security, main controls applied are terms and conditions of employment, and awareness and training.

These articles will provide you further explanation about awareness and training, and terms and conditions:
- What are the benefits of security awareness training for organizations? https://advisera.com/27001academy/blog/2019/03/27/what-are-the-benefits-of-security-awareness-training-for-organizations/
- What to consider in security terms and co nditions for employees according to ISO 27001 https://advisera.com/27001academy/blog/2018/05/23/what-to-consider-in-security-terms-and-conditions-for-employees-according-to-iso-27001/

This material will also help you regarding awareness and training:
- Free Security Awareness Training: https://training.advisera.com/awareness-session/security-awareness-training/ - this is a series of 25 videos that cover various topics related to security.
Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jul 23, 2019

Jul 23, 2019

Suggested Topics