I trust this email finds you well.
I have a question; I wonder if I may ask. I understand preferably your services is in fact your income, so I don’t want to seem as though I am taking advantage.
We are a software development house, planning on implementing ISO27001. I am going through the webinars and also the Foundations Course.
May I ask, the controls start at 5 (5.1) – is this because this is where the 27001 family starts? We just want to be sure not to miss Controls. If there are 114 (in 40 sections) Controls, I take it not all of them fall under ISO27001 – that is why not all 114 are listed?