Expert Advice Community

Guest

SoA

  Quote
Guest
Guest post Created:   Jan 12, 2016 Last commented:   Jan 12, 2016

SoA

Hello friends, The Statement of Applicability (SoA) is applied only to the process of the scope of the ISMS?? or it's applied to whole organization?? Thanks you for your help Best regards
0 0

Assign topic to the user

ISO 27001 STATEMENT OF APPLICABILITY

List all controls and determine which are applicable and why.

ISO 27001 STATEMENT OF APPLICABILITY

List all controls and determine which are applicable and why.

Guest
DejanK Jan 12, 2016

Cesar,

You are free to decide whether the controls from Statement of Applicability will apply to your whole organization or only to the ISMS scope.

However, in case you go for the ISO 27001 certification, then in SoA you should use only the controls that apply to your ISMS scope because otherwise you will have problems with the certification auditor.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jan 12, 2016

Jan 12, 2016

Suggested Topics