Statement of Applicability content
Assign topic to the user
Answer:
Advisera's Statement of Applicability template covers all controls defined in the ISO 27001 Annex A standard. These controls cover administrative, technical and physical areas in a general manner, but this list is not definitive or absolute, so you are free to add any controls you feel are needed.
The following controls are related to to the practices you mentioned:
- A.13.1.1 Network controls can cover Wan Traffic Flow
- A.13.1.3 Segregation in networks can cover Network Segregation
- A.14.2.4 Restrictions on changes to software packages, A.12.5.1 Installation of software on operational systems, and A.12.6.1 Management of technical vulnerabilities can cover Pacht Mgmt process
These articles will provide you further explanation about controls related to the mentioned practices:
- How to manage network security according to ISO 27001 A.13.1 https:/ /advisera.com/27001academy/blog/2016/06/27/how-to-manage-network-security-according-to-iso-27001-a-13-1/
- Requirements to implement network segregation according to ISO 27001 control A.13.1.3 https://advisera.com/27001academy/blog/2015/11/02/requirements-to-implement-network-segregation-according-to-iso-27001-control-a-13-1-3/
- How to manage technical vulnerabilities according to ISO 27001 control A.12.6.1 https://advisera.com/27001academy/blog/2015/10/12/how-to-manage-technical-vulnerabilities-according-to-iso-27001-control-a-12-6-1/
Comment as guest or Sign in
Nov 15, 2018