Assign topic to the user
I just want to know that is your new RISK assessment toolkit is based on ISO 31000
Answer:
Our methodology is based on ISO 27005, which has the same structure that ISO 31000 (they are fully compatible), but while ISO 31000 is focused on any type of risk (environmental, financial, information security, etc), ISO 27005 is focused specifically to information security. So, if you want to work only with information security, the best, or our recommendation, is a methodology based on ISO 27005. If you want, you can see a free version of our template clicking on Free Demo tab here Risk Assessment and Risk Treatment Methodology : https://advisera.com/27001academy/documentation/Risk-Assessment-and-Risk-Treatment-Methodology/
Finally, if you need more information about ISO 27001, ISO 27005 and ISO 31000, you can read this article ISO 31000 and ISO 27001 How are they related? : https://advisera.com/27001academy/blog/2014/03/31/iso-31000-and-iso-27001-how-are-they-related/
Comment as guest or Sign in
Jan 12, 2016