Expert Advice Community

Guest

Missing documents

  Quote
Guest
Guest user Created:   Jul 09, 2021 Last commented:   Jul 09, 2021

Missing documents

Hi I am a customer and purchased the ISO set, but 12.4.1, 2,3 and 4 are not in the document set"

Can we look into this and send him the missing documents?

0 0

Assign topic to the user

Assign

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Jul 09, 2021

 Please note that controls A.12.4.1 (Event logging) and A.12.4.3 (Administrator and operator logs) are covered in template “Security Procedures for IT Department”, located in folder 08_Annex_A_Security_Controls >> A.12_Operations_Security

Regarding controls A.12.4.2 (Protection of log information) and A.12.4.4 (Clock synchronization), please note the ISO 27001 does not require every applicable control to be documented, and in such cases, a short explanation about its implementation included in the Statement of Applicability will be enough (you can find documented information about these controls in the SoA template located in folder 06 Applicability of Controls).

This article will provide you a further explanation about controls documentation:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jul 09, 2021

Jul 09, 2021

Suggested Topics

Guest user Created:   Nov 26, 2020 ISO 27001 & 22301
Replies: 1
0 0

Questions for ISMS

Guest user Created:   Apr 17, 2020 ISO 27001 & 22301
Replies: 1
0 0

Question about policy