ISO 27001 record types
Assign topic to the user
Answer:
ISO 27001 defines that "documented information" relates to all documents and records that are necessary for the information security management system (ISMS). Therefore, yes - you could say that when "records" are mentioned in ISMS documentation, they refer to security-related records.
However, these records will include backup logs, access control logs, corrective actions, reports, and large amount of other records that help you manage your security. See also this article: Records management in ISO 27001 and ISO 22301 https://advisera.com/27001academy/blog/2014/11/24/records-management-in-iso-27001-and-iso-22301/
If you have a checklist that you fill out by checking the items you have completed, than this would also be a record.
Comment as guest or Sign in
Feb 25, 2016