Risk management approach
Assign topic to the user
Answer:
Requirements for risk management in ISO 27001 do not prescribe which approach to use, only that a process must be defined, so you can use requirements from both ISO 27001 and COBIT 5 to perform risk management without a problem.
This article will provide you further explanation about ISO 27001 and COBIT:
- How to integrate COSO, COBIT, and ISO 27001 frameworks https://advisera.com/27001academy/blog/2016/10/10/how-to-integrate-coso-cobit-and-iso-27001-frameworks/
This material will provide you further explanation about ISO 27001risk management:
- The basics of risk assessment and treatment according to ISO 27001 [free webinar] https://advisera.com/27001academy/webinar/basics-risk-assessment-treatment-according-iso-27001-free-webinar-demand/
Comment as guest or Sign in
Dec 31, 2018