Expert Advice Community

Guest

Organizational Chart

  Quote
Guest
Guest user Created:   Jun 18, 2020 Last commented:   Jun 18, 2020

Organizational Chart

We purchased your ISO27001 toolkit and have a quick question.

In the ISMS Scope Document (and any other applicable) is it acceptable to reference an Organizational Chart in the document for Employees in the Organizational Unit and not include the actual names, or do I need to keep the Scope (and any other applicable) document updated as employees come and go within the organization?

0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Jun 18, 2020

It is acceptable for ISO 27001 to reference to Organizational Chart in the elaborated documents, instead of using employee's names. In fact, this is a good practice, because, as you mentioned, by using roles instead of people's names, you do not need to update the documents every time the staff changes.

This article will provide you a further explanation about defining scope:

These materials will also help you regarding defining scope:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jun 18, 2020

Jun 18, 2020

Suggested Topics