ISO 27001 interpretation of A.8.2.1
Assign topic to the user
Answer:
I'm not sure if I understood your question correctly, but ISO 27001 allows you to classify your information in any aspect you see fit for your company. Most companies classify their information in terms of confidentiality (i.e. how secret it is), and some companies classify their information in terms of availability (i.e. how quickly they need to get it).
See also this article: Information classification according to ISO 27001 https://advisera.com/27001academy/blog/2014/05/12/information-classification-according-to-iso-27001/
Comment as guest or Sign in
Oct 18, 2016