Expert Advice Community

Home / ISO 27001 & 22301 / Segregation of duties

Guest

Segregation of duties

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Dec 22, 2016 Last commented:   Dec 22, 2016

Segregation of duties

ISO 27001 & 22301
I have an issue with A.6.1.2 clausule. My company is small, do you have some information or example ?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.
Expert
Rhand Leal Dec 22, 2016

Answer: If the number of persons in your organization does not allow you to split responsibilities and duties, you should consider the implementation of other controls that work as deterrent to bad behaviour or allow you to detect such situations. As examples I can list video cameras, management supervision, job rotation and systems logs.

This article will provide you further explanation about segregation of duties:
- Segregation of duties in your ISMS according to ISO 27001 A.6.1.2 https://advisera.com/27001academy/blog/2016/11/21/segregation-of-duties-in-your-isms-according-to-iso-27001-a-6-1-2/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Dec 22, 2016

Dec 22, 2016

Suggested Topics
Guest user Created:   May 13, 2020 ISO 27001 & 22301
Replies: 1
0 0

Key Universal Principles of Segregation of Duties
Guest user Created:   Mar 09, 2020 ISO 27001 & 22301
Replies: 1
0 0

Segregation of duties
Guest user Created:   Feb 10, 2020 ISO 27001 & 22301
Replies: 1
0 0

Assets detail level and segregation of duties