ISO/IEC 27001:2013 is the
requirements specification standard for an
information security management system, or
ISMS for short. There are requirements for
performing information security risk
assessments, risk treatments, and for
producing a 'Statement of Applicability'.
Reputedly, some organisations have found
difficulty with these requirements because
they state what must be done, not how to do
it.
There are standards in the ISO/IEC 27xxx
series that offer guidance on how to fulfil
the requirements of ISO/IEC 27001. These are
descriptive in nature. They describe how
organisations could perform risk assessments
and offer advice on how to construct a
Statement of Applicability (SOA). However,
they are lacking in worked examples.Having
assisted many organisations to achieve
ISO/IEC 27001 certification, I have
developed and fine-tuned a methodology for
fulfilling these requirements.
| - File: |  pdf |
| - Pages: | 130 |
| - Language: |
 English |
| - Size: | 17.1 MB |
| - Code: | E-Book-ISO27001-Assessment |
Below is a list of documents you will find in the E-book. Click on index file button to see which contents are included.
|
|
|
|
|
|
|
|
|
IT toolkit has REVOLUTIONIZED our IT, It forms the bedrock of our SOP toolkit, enables us to generate run books and has dramatically lowered the cost of training new IT staff, while increasing user's satisfation .
Once we implemented IT Toolkit, all of that changed. Now we have an IT final plan that looks professional, is well organized and makes it easy for everyone to find the information that they need.
The responses from clients has been very positive as well. Even the ones who have the information don't have it as wellorganized as we do and they really appreciate having everything together. Most importantly, we are becoming more efficient and that leads to greater IT Manager!
The toolkits provides a framework for a best practice implementation - where if your best practice changes or refines, your entire documentation environment follows.
The IT Toolkit brings order to the chaos of managing and delivering on documentation for our clients. It has let me reduce the burden on my engineers managing documentation and allowed them to focus back on the client. It's a game changer .
I have been searching for a good tool that will help avoid duplicate entries for documentation purposes. The IT Toolkit did just that and more. All of our engineers absolutely love this tool. We eliminated 2 tools and replaced them with the IT Toolkit which is much more effective and faster.
The step-by-step IT Toolkit is easy to use and there is zero ramp up time - you can read this clearly laid out ebook and implement right away. I appreciate that you make the process easier on my clients and still give them 100% control.
The IT Toolkit gives me a broader understanding of the use and efficency of IT management. It presents a friendly, easy way to do something I've known would be good for me.
The toolkit is helping organize my thoughts and training methods with our IT Inside crew already.
Excellent IT Toolkits. It is a must for all CIO and technology managers.
A very useful toolkit. It's one of the best tools I have ever taken. I wish all IT managers could take it.
These toolkits have helped me gain confidence in my ability and empowered me to be an IT manager.