Expert Advice Community

Home / ISO 27001 & 22301 / Treating server as a single asset or viewing it separately for hardware and soft

Guest

Treating server as a single asset or viewing it separately for hardware and soft

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Jan 12, 2016 Last commented:   Jan 12, 2016

Treating server as a single asset or viewing it separately for hardware and soft

ISO 27001 & 22301
If you identified an asset for example, an application on a server... Do you have to separate two assets or to treat as an single asset?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.
Guest
DejanK Jan 12, 2016

Like this:

Asset 1: Application
Asset 2: server on which the application runs

or

Asset: Application / server

Answer:

ISO 27001 allows you to do it both ways. First approach you mentioned is better if you want to get more precise results during the risk assessment, whereas the second approach is probably better for smaller companies where you want to finish your risk assessment quickly.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jan 12, 2016

Jan 12, 2016

Suggested Topics
Guest user Created:   Oct 31, 2023 ISO 27001 & 22301
Replies: 1
0 0

Question on risk register and selection of the assets
Guest user Created:   Sep 20, 2023 ISO 27001 & 22301
Replies: 1
0 0

Asset and Risk Owners - can it be a role and also a name of an employee
Guest user Created:   Aug 10, 2023 ISO 27001 & 22301
Replies: 1
0 0

What asset to list when Risks relate to general or high-level assets?