SPRING DISCOUNT
Get 30% off on toolkits, course exams, and Conformio yearly plans.
Limited-time offer – ends April 25, 2024
Use promo code:
SPRING30

Expert Advice Community

Home / ISO 27001 & 22301 / ISO 27001 implementation requirement

Guest

ISO 27001 implementation requirement

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Apr 16, 2022 Last commented:   Apr 16, 2022

ISO 27001 implementation requirement

ISO 27001 & 22301
The instructor has mention that "conducting the risk assessment is in plan phase? which is an actionable and more to be in Do phase?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.
Expert
Rhand Leal Apr 16, 2022

First is important to note that ISO 27001 does not specify the PDCA cycle.

Please note that the best practice is to consider Risk assessment as part of the Plan phase, since its main objective is to identify and prioritized relevant risks to be treated, so you can plan why controls to implement.

In the Do phase, you implement and operates the controls.

This article will provide you a further explanation about ISO 27001 and PDCA cycle:
- Has the PDCA Cycle been removed from the new ISO standards? https://advisera.com/27001academy/blog/2014/04/13/has-the-pdca-cycle-been-removed-from-the-new-iso-standards/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Apr 15, 2022

Apr 15, 2022

Suggested Topics
Guest user Created:   Oct 18, 2018 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 requirements and implementation
Guest user Created:   Jun 13, 2023 ISO 27001 & 22301
Replies: 1
0 0

Retention for SIEM
Guest user Created:   Mar 25, 2023 ISO 27001 & 22301
Replies: 3
0 0

Mandatory documents or not