What is cybersecurity?Interpreting the control A.8.1.1
Assign topic to the user
Although this distinction is not yet clearly established, I would say that cybersecurity deals only with digital information, while information security deals also with information in other media (e.g. paper).
See also this article: What is cybersecurity and how can ISO 27001 help? https://advisera.com/27001academy/blog/2011/10/25/what-is-cybersecurity-and-how-can-iso-27001-help/
There had been a change to one control from ISO 27001:2013. Can you please elaborate the changes and implications on the existing control?
Thanks and regards,
Ketan Shah
Technical corrigendum 1
Technical Corrigendum 1 to ISO/IEC 27001:2013 was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 27, Security techniques.
Page 12, Subclause A.8.1.1
Replace
Control
Assets associated with information and information processing facilities shall be identified and an inventory of these assets should be drawn up and maintained.
with
Control
Information, other assets associated with information and information processing facilities shall be identified and an inventory of these assets shall be drawn up and maintained.
You'll find the answer here: https://community.advisera.com/topic/iso-27001-2013-amended-version/
Comment as guest or Sign in
Jan 12, 2016