Expert Advice Community

Guest

Statement of Applicability for network security

  Quote
Guest
Guest user Created:   Jan 12, 2016 Last commented:   Jan 12, 2016

Statement of Applicability for network security

Within ISO 27001 we have an SOA which states the controls for IS. Does an SOA for Network Security Exist?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Guest
DejanK Jan 12, 2016

Answer: I assume that by SOA you refer to Statement of Applicability. ISO 27001 requires that Statement of Applicability lists all the controls from Annex A - in the Annex A of ISO 27001:2013 you have 3 controls dealing with network security in the sub-section A.13.1 Network security management.

So there is no separate Statement of Applicability for network security - you need to list those controls in your existing Statement of Applicability.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jan 12, 2016

Jan 12, 2016

Suggested Topics

Guest user Created:   Jun 12, 2020 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 scope