Answer:
If you question is related to classification of assets, yes, absolutely, there can be various types of assets, and a workstation can be type hardware. Regarding the asset inventory, I recommend you to read this article How to handle Asset register (Asset inventory) according to ISO 27001 : https://advisera.com/27001academy/knowledgebase/how-to-handle-asset-register-asset-inventory-according-to-iso-27001/
And if your question is related to the use of a class of asset called "workstation", you also can include a type of asset "workstation" in your methodology, but I think that it is not a good idea, because a workstation, from the point of view of the information security, can be very similar to a server, so it is better to establish a superior level for both.
Comment as guest or Sign in
Jan 12, 2016