Guest user Created: Jan 12, 2016 Last commented: Jan 12, 2016

Regrading Security Framework

I am doing the security framework for my company. I would like to know what are all the section i have to include this section and tell me what the different between the security plan and framework.then risk treatment plan and security plan

0 0

Assign topic to the user

Select user

Guest

DejanK Jan 12, 2016

If you want to implement security framework according to ISO 27001, you'll find the implementation steps here: ISO 27001 implementation checklist https://advisera.com/27001academy/knowledgebase/iso-27001-implementation-checklist/

The sections/controls you need to implement depend on the results of the risk assessment - see an explanation here: The basic logic of ISO 27001: How does information security work? https://advisera.com/27001academy/knowledgebase/the-basic-logic-of-iso-27001-how-does-information-security-work/

For better understanding of the risk treatment plan, see this article: Risk Treatment Plan and risk treatment process Whats the difference? https://advisera.com/27001academy/iso-27001-risk-assessment-treatment-management/#treatment

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Jan 12, 2016

Expert Advice Community

Regrading Security Framework

Regrading Security Framework

Assign topic to the user

Comment as guest or Sign in

Suggested Topics

Teleworking Policy and IT Security Policy

Choose to Not implement a security control

Information Security Goals