ISO certification questions
I purchased the ISO 27001Toolkit and have two questions,
1) Is the risk assessment documents in the toolkit in line with ISO 27005, e.g. we as organization, after we are ISO Certified using the toolkit can say we adhere to ISO 27005?
2) ISO is international, it would be the same as Canada as it would for New Zealand as an example.
Assign topic to the user
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
1) Is the risk assessment documents in the toolkit in line with ISO 27005, e.g. we as organization, after we are ISO Certified using the toolkit can say we adhere to ISO 27005?
The risk assessment documents in the toolkit are compliant with ISO 27005.
ISO 27005 is a supporting standard to ISO 27001, detailing how to implement risk management for information security (basically covering ISO 27001 clauses 6.1.2 and 6.1.3).
This article will provide you a further explanation about implementing risk management:
- ISO 27001 risk assessment & treatment – 6 basic steps https:// advisera.com/27001academy/knowledgebase/iso-27001-risk-assessment-treatment-6-basic-steps/
2) ISO is international, it would be the same as Canada as it would for New Zealand as an example.
Your assumption is correct. A standard with the designation “ISO” is the same for every country, so the standard's requirements for Canada will be the same as for New Zealand.
Comment as guest or Sign in
Oct 11, 2021