Guest
Using existing Information security policy
We already have an Information Security Policy on our 9001:2008. Is it alright if I will not have to rewrite it and just put in the reference section the Document code?
Assign topic to the user
Expert
Dejan Kosutic
May 04, 2016
Answer:
Sure, you can use your existing security policy, however you have to make sure that existing policy has all the mandatory elements that are prescribed by ISO 27001.
To learn about the mandatory elements of the policy, see this free ISO 27001 Foundations Course: https://advisera.com/training/iso-27001-foundations-course/
Comment as guest or Sign in
May 04, 2016
May 04, 2016
May 04, 2016