Expert Advice Community

Home / ISO 27001 & 22301 / Risk assessment and information classification

Guest

Risk assessment and information classification

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Sep 08, 2017 Last commented:   Sep 08, 2017

Risk assessment and information classification

ISO 27001 & 22301
I would like to know if there is a specific Risk assessment done for Document classification. If you have a template or some reference document would be of great help
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.
Expert
Rhand Leal Sep 08, 2017

Answer: Information classification is a security control you implement after the risk assessment, so you do not classify information and performs risks assessment, but by means of the risk assessment you identify the need to classify information, generally because you have types of information that requires different types of securitycontrols.

This article will help you with document classification:
- Information classification according to ISO 27001 https://advisera.com/27001academy/blog/2014/05/12/information-classification-according-to-iso-27001/

These materials will also help you regarding document classification:
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
- Free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Sep 08, 2017

Sep 08, 2017

Suggested Topics
Guest user Created:   Mar 04, 2021 ISO 27001 & 22301
Replies: 1
0 0

Asset Classification Best Practices
Guest user Created:   Nov 14, 2016 ISO 27001 & 22301
Replies: 1
0 0

Assets valuation and the information classification policy