Guest user Created: Apr 01, 2022 Last commented: Apr 01, 2022

ISO 27001 Integration

I have just been approached by a Large Organisation, who asked as to whether there is any integration for PCI DSS/ISO 27001 requirements with specific regard to Data/Information Management. This is a really large opportunity, and I shall discuss more detail if I know as to whether this is possible.

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Apr 01, 2022

We're not experts in PCI DSS, but generally, we recommend ISO 27001 documentation toolkit as a way to contribute to achieving PCI compliance, because PCI-DSS has some requirements that can be fulfilled by ISO 27001 controls from Annex A, such as access control policy, back up policy, etc.

These articles will provide you with a further explanation of PCI DSS and ISO 27001:

PCI-DSS vs. ISO 27001 Part 1 – Similarities and Differences https://advisera.com/27001academy/knowledgebase/pci-dss/
PCI-DSS vs. ISO 27001 Part 2 – Implementation and Certification https://advisera.com/27001academy/knowledgebase/pci-dss/

This material will also help you regarding ISO 27001 implementation:

Free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/

This article from ISACA can provide you with a comparison between ISO 27001 and PCI DSS: https://www.isaca.org/resources/isaca-journal/issues/2016/volume-1/comparison-of-pci-dss-and-isoiec-27001-standards

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Apr 01, 2022

Expert Advice Community