Expert Advice Community

Home / ISO 27001 & 22301 / Using existing Information security policy

Guest

Using existing Information security policy

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   May 04, 2016 Last commented:   May 04, 2016

Using existing Information security policy

ISO 27001 & 22301
We already have an Information Security Policy on our 9001:2008. Is it alright if I will not have to rewrite it and just put in the reference section the Document code?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.
Expert
Dejan Kosutic May 04, 2016

Answer:

Sure, you can use your existing security policy, however you have to make sure that existing policy has all the mandatory elements that are prescribed by ISO 27001.

To learn about the mandatory elements of the policy, see this free ISO 27001 Foundations Course: https://advisera.com/training/iso-27001-foundations-course/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

May 04, 2016

May 04, 2016

Suggested Topics
Guest user Created:   Nov 26, 2019 ISO 27001 & 22301
Replies: 3
0 0

Risk Assessment
Guest user Created:   Mar 15, 2018 ISO 27001 & 22301
Replies: 1
0 0

Risk Assessment