Expert Advice Community

Guest

Risk assessment and asset management

  Quote
Guest
Guest user Created:   Dec 27, 2019 Last commented:   Dec 28, 2019

Risk assessment and asset management

Hello, I wanted to ask you which one should be done first? Risk assessment or asset management?

0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Dejan Kosutic Dec 28, 2019

According to ISO 27001, risk assessment should be done first - once you identify and evaluate all the risks, then you can start implementing security controls - in ISO 27001 Annex A section A.8 "Asset management", there are in total 10 controls that deal with asset management. 

These articles will also help you:

These materials will also help you regarding risk assessment and asset management:
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your
Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
- Free online training ISO 27001 Foundations Course
https://training.advisera.com/course/iso-27001-foundations-course/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Dec 27, 2019

Dec 28, 2019