Expert Advice Community

Guest

SOA Content

  Quote
Guest
hamzamuhammad Created:   Dec 18, 2017 Last commented:   Dec 19, 2017

SOA Content

It should include justification for exclusion of controls that aren't applicable!! Does this mean that it has the all 114 control?!
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Dec 19, 2017
According to ISO 27001 clause 6.1.3 d) you have to provide justification for inclusion of any implemented control and for the exclusion of any control related in the Annex A, so, for example, if you do not apply 56 controls from Annex A you have to justify the exclusion of each one of these 56 controls. Fulfilling this requirements will help you ensure no control has been left without a proper analysis.

This article will provide you further explanation about the statement of applicability content:
- The importance of Statement of Applicability for ISO 27001 https://advisera.com/27001academy/knowledgebase/the-importance-of-statement-of-applicability-for-iso-27001/

These materials will also help you regarding the statement of applicability content:
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
- Free online training ISO 27001 Foundations Course https://training.advisera.com/course/iso-27001-foundations-course/
Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Dec 18, 2017

Dec 19, 2017

Suggested Topics

Guest user Created:   Nov 22, 2017 ISO 27001 & 22301
Replies: 1
0 0

SoA content_

Guest user Created:   Nov 21, 2017 ISO 27001 & 22301
Replies: 1
0 0

SOA content

Guest user Created:   Sep 17, 2017 ISO 27001 & 22301
Replies: 2
0 1

SOA content fields