ISO 27001 and ISO 9001
Assign topic to the user
Please note that it is not possible because ISO 9001 and ISO 27001 approaches for risk assessment are pretty different. Risk assessment for ISO 9001 needs to cover a broader range of topics than risk assessment for ISO 27001 (ISO 27001 focuses on information security risk assessment, while ISO 9001 focuses risks related to processes, products and services).
These articles will provide you a further explanation about risk assessment and document and record management:
- The Role of Risk Assessment in the QMS https://advisera.com/9001academy/blog/2014/01/07/role-risk-assessment-qms/
- ISO 27001/ISO 27005 risk assessment & treatment – 6 basic steps https://advisera.com/27001academy/knowledgebase/iso-27001-risk-assessment-treatment-6-basic-steps/
- Similarities and differences in risk management in ISO 9001, ISO 31000, and ISO 27001 https://advisera.com/9001academy/blog/2016/10/25/similarities-and-differences-in-risk-management-in-iso-9001-iso-31000-and-iso-27001/
- How to manage documents according to ISO 27001 and ISO 22301 https://advisera.com/27001academy/blog/2021/06/27/how-to-manage-documents-according-to-iso-27001-and-iso-22301/
- Records management in ISO 27001 and ISO 22301 https://advisera.com/27001academy/blog/2014/11/24/records-management-in-iso-27001-and-iso-22301/
- New approach to document and record control in ISO 9001:2015 https://advisera.com/9001academy/blog/2015/06/30/new-approach-to-document-and-record-control-in-iso-90012015/
This material will also help you regarding document and record management:
- Managing ISO Documentation: A Plain English Guide https://advisera.com/books/managing-iso-documentation-plain-english-guide/
Comment as guest or Sign in
Feb 20, 2022