Expert Advice Community

Guest

SOA Control Objectives

  Quote
Guest
Guest user Created:   Sep 06, 2022 Last commented:   Sep 06, 2022

SOA Control Objectives

I am reviewing the “Statement of Applicability” document within the 27001 2022 toolkit and noticed that under the SOA table in para. 3. Applicability of controls there isn’t any control objectives.

Can you confirm that the controls listed in the 27002-2022 are the same controls used in the 27001 2022.

0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Sep 06, 2022

The controls listed in the SoA template included in the ISO 27001:2022 toolkit are the same ones defined in the ISO 27002:2022.

Please note that the column “Control Objectives” needs to be filled in by the organization. Control objectives are not mandatory in SoA, but including them in the SoA will make it easier to follow them, and reduce administrative effort to keep them in a separate document.

These articles will provide you with further explanation about ISO 27001 and ISO 27002 controls:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Sep 06, 2022

Sep 06, 2022

Suggested Topics

Guest user Created:   Jan 24, 2023 ISO 27001 & 22301
Replies: 1
0 0

ISM Policy

Guest user Created:   Jan 23, 2023 ISO 27001 & 22301
Replies: 1
0 0

Custom Control Creation