ISO 27K Competences
Please advice about CISO Competences required by ISO 27K, those that needed to be documented.
Assign topic to the user
ISO 27001 INTERNAL AUDITOR COURSE
Everything you need to perform the internal audit for the first time.
Enroll for free 
ISO 27001 INTERNAL AUDITOR COURSE
Everything you need to perform the internal audit for the first time.
Enroll for free
ISO 27001 INTERNAL AUDITOR COURSE
Everything you need to perform the internal audit for the first time.
Enroll for free
ISO 27001 does not prescribe the CISO role, neither the competencies required to run an ISMS, but considering the requirements o the standard, if you have a CISO in your organization, you should consider at least these areas of competencies:
- Standard: knowledge of ISO 27001 standard
- Compliance: to identify interested parties and their requirements
- Documentation: for the development of policies and procedures
- Risk Management: to teach and guide employess during risk assessment and risk treatment process
-Human resources management: to provide awareness and training activities
These articles will provide you further explanation about CISO role and competencies:
- Chief Information Security Officer (CISO) – where does he belong in an org chart? https://advisera.com/27001academy/blog/2012/09/11/chief-information-security-officer-ciso-where-does-he-belong-in-an-org-chart/
- What is the job of Chief Information Security Officer (CISO) in ISO 27001? https://advisera.com/27001academy/knowledgebase/what-is-the-job-of-chief-information-security-officer-ciso-in-iso-27001/
Comment as guest or Sign in
Mar 25, 2020