ISO 27001 RISK ASSESSMENT AND RISK TREATMENT METHODOLOGY
Define main rules for risk assessment and treatment.
Get it now 
ISO 27001 RISK ASSESSMENT AND RISK TREATMENT METHODOLOGY
Define main rules for risk assessment and treatment.
Get it now
ISO 27001 RISK ASSESSMENT AND RISK TREATMENT METHODOLOGY
Define main rules for risk assessment and treatment.
Get it now
If you can help me about
- example about Supplier relationship policy based on ISO 27001.
- Example methodology based on likelihood and impact criteria.
Answer:
Sure, this is your site. Regarding to the supplier relationship, this article can be interesting for you 6-step process for handling supplier security according to ISO 27001 : https://advisera.com/27001academy/blog/2014/06/30/6-step-process-for-handling-supplier-security-according-to-iso-27001/. At the end of the article, you have a link to the template Supplier Security Policy, you can see a free version clicking on Free Demo tab.
Regarding to the methodology, I suppose that you are referring to the risk assessment & treatment. If so, this article can be interesting for you How to write ISO 27001 risk assessment methodology : https://advisera.com/27001academy/knowledgebase/write-iso-27001-risk-assessment-methodology/. And also, at the end of the article, you can find the free template Risk Assessment and Risk Treatment Methodology. This method ology is based on assets, and the risk is calculated by likelihood and consequences (similar to impact) of threats and vulnerabilities.
Comment as guest or Sign in
Jan 12, 2016