Template content
Assign topic to the user
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
Section: 3.1 Chyptographic Measures
Question: At the beginning of this section the document talks about related documents. About the guideline for information classification and about contractual and legal needs. About the second one: by this do you mean the list of legal, official, contractual and other requirements? If yes do I have to add the document in section 2 (reference documents)?
Answer:
Yes, the referred document is the list of legal, official, contractual and other requirements. Regarding the second, you have to list this document, or the similar one you already use in your organization, in the list of referenced documents. If you don't have such a List, then list all the legislation and contracts related to the use of cryptography.
This article will provide you further explanation about use of cryptographic controls:
- How to use the cryptography according t o ISO 27001 control A.10 https://advisera.com/27001academy/how-to-use-the-cryptography-according-to-iso-27001/
Comment as guest or Sign in
Oct 03, 2018