Standard Forms
Assign topic to the user
By ISO 27002 12.1.2 I’m assuming you mean control A.12.1.2 Change management from ISO 27001 Annex A.
Considering that, please note that Conformio already does cover this control through Change Management Policy or Security Procedures for IT Department.
One of these documents will become available for customization once you state control A.12.1.2 as applicable in the Statement of Applicability document.
ISO 27001 does not prescribe the contents of change records, so organizations can develop them as they see fit.
To see an example, I suggest you take a look at the free demo of our Request for Change and Change Record at this link: https://advisera.com/20000academy/documentation/request-for-change-and-change-record/ , but remember that such register is not really needed for ISO 27001 compliance.
For further information see:
How to manage changes in an ISMS according to ISO 27001 A.12.1.2 https://advisera.com/27001academy/blog/2015/09/14/how-to-manage-changes-in-an-isms-according-to-iso-27001-a-12-1-2/
Comment as guest or Sign in
Jun 12, 2022