ISO 27001 clauses 6 and 8
Assign topic to the user
Answer:
Clauses 6.1.2 and 6.1.3 refer to the planing phase, i.e., the requirements your adopted risk assessment and risk treatment methodology must fulfill, while clauses 8.2 and 8.3 refer to performing the risk assessment and risk treatment, i.e., the effective identification, analysis, evaluation and treatment of the risks perceived by your organization.
This article will provide you further explanation about risk assessment and treatment:
- ISO 27001 risk assessment & treatment – 6 basic steps https://advisera.com/27001academy/knowledgebase/iso-27001-risk-assessment-treatment-6-basic-steps/
These materials will also help you regarding risk assessment and treatment:
- The basics of risk assessmen t and treatment according to ISO 27001 [free webinar] https://advisera.com/27001academy/webinar/basics-risk-assessment-treatment-according-iso-27001-free-webinar-demand/
- Book ISO 27001 Risk Management in Plain English https://advisera.com/books/iso-27001-annex-controls-plain-english/
Comment as guest or Sign in
Feb 26, 2019