ISO 27001 security

1–30 of 3800

Forum etiquette

These are just brief highlights of the forum etiquette on ISO27001security.com.

Be polite and respectful. This is a professional forum. Your involvement is a privilege not a right.
Write in English please (translate.google.com is OK) and don't forget to tell us your name. What should we call you?
No advertising other than discreet email signatures. This is not the place for blatant commercials and sales pitches.
Do not circulate copyright materials without express permission. We don't take prisoners. You have been warned.

0 selected

6:06 AM

Security Metrics

Hi Folks, Hope you are all doing great. I do have a few questions related to Security Metrics: 1- Who

unread,

Security Metrics

Hi Folks, Hope you are all doing great. I do have a few questions related to Security Metrics: 1- Who

6:06 AM

jugknot, … Gary7

Dec 2

Owning Standards for the ISMS

Hello Asaf and welcome to the Forum. I agree that, in general, anyone using and implementing a

unread,

Owning Standards for the ISMS

Hello Asaf and welcome to the Forum. I agree that, in general, anyone using and implementing a

Dec 2

spencerc...@gmail.com, … Gary11

Nov 26

Datacentres - Physical Security.

OK this is just a real weird situation and really hard to describe and probably cant be done without

unread,

Datacentres - Physical Security.

OK this is just a real weird situation and really hard to describe and probably cant be done without

Nov 26

Gary, … Nigel Landman9

Nov 25

Pffttt ... never mind, I have your book now, so that should keep me going. Thanks. On Wed, 24 Nov

unread,

Pffttt ... never mind, I have your book now, so that should keep me going. Thanks. On Wed, 24 Nov

Nov 25

tweil...@gmail.com, … jugknot10

Nov 24

Control Question - Loss of Key Personnel

ramsingapore Thank you for your well written response. I am going with clause 5.3 (Organizational

unread,

Control Question - Loss of Key Personnel

ramsingapore Thank you for your well written response. I am going with clause 5.3 (Organizational

Nov 24

Edward Hodgson, … Marappan Ramiah76

Nov 23

Legal / regulatory risks

Tks Ovidi for your update and it is very much appreciated. The auditor has given "Conformance

unread,

Legal / regulatory risks

Tks Ovidi for your update and it is very much appreciated. The auditor has given "Conformance

Nov 23

Denis Croombs, … Maurizio Dal Re6

Nov 11

ISo27001 A.14.2 when using ALL SAAS or PAAS solutions

Thank you, very interesting. Maurizio Dal Re CISSP, LA ISO 27001 Il giorno mercoledì 10 novembre 2021

unread,

ISo27001 A.14.2 when using ALL SAAS or PAAS solutions

Thank you, very interesting. Maurizio Dal Re CISSP, LA ISO 27001 Il giorno mercoledì 10 novembre 2021

Nov 11

Gary, Walt Williams2

Nov 8

Curious about topic-specific policies?

Would love to, swamped preparing for my annual audit Sent from my iPad > On Nov 7, 2021, at 3:17

unread,

Curious about topic-specific policies?

Would love to, swamped preparing for my annual audit Sent from my iPad > On Nov 7, 2021, at 3:17

Nov 8

Ballina Corriga, … Marappan Ramiah24

Nov 6

more on 27001 - Annex A

Tks Guru Gary. Please see clarifications on my understanding. The risk assessment is never truly

unread,

more on 27001 - Annex A

Tks Guru Gary. Please see clarifications on my understanding. The risk assessment is never truly

Nov 6

spencerc...@gmail.com, … Marappan Ramiah9

Nov 5

Stage 2 and Internal audit.

Hi Spencer, The entity carrying out the audit should not have been involved in the planning, design,

unread,

Stage 2 and Internal audit.

Hi Spencer, The entity carrying out the audit should not have been involved in the planning, design,

Nov 5

Chris Hall, … PROF. JEGZY35

Nov 1

New versions of ISO27001 and ISO27002.

Thanks Ballina, Chris and Markus. On Mon, 1 Nov 2021, 8:21 am Ballina Corriga, <ballinacorriga@

unread,

New versions of ISO27001 and ISO27002.

Thanks Ballina, Chris and Markus. On Mon, 1 Nov 2021, 8:21 am Ballina Corriga, <ballinacorriga@

Nov 1

Esther Rani Jeyajeevan, … spencerc...@gmail.com8

Oct 26

Urgent - Cloud management

Thats a very useful approach for me too. thanks. On Tuesday, 26 October 2021 at 11:43:57 UTC+1

unread,

Urgent - Cloud management

Thats a very useful approach for me too. thanks. On Tuesday, 26 October 2021 at 11:43:57 UTC+1

Oct 26

Lifelong Learner, … Churchill Blu9

Oct 26

I need help to master ISO 27001!

Cheers Peter , Am going to do because at this point am like a sponge bulb ready to take every useful

unread,

I need help to master ISO 27001!

Cheers Peter , Am going to do because at this point am like a sponge bulb ready to take every useful

Oct 26

Sudhanwa Jogalekar, … Marappan Ramiah5

Oct 23

Endpoint security policies, implementation in WFH environment

Good morning , Scenario B is not recommended that is using RDP - remote desktop protocol. This should

unread,

Endpoint security policies, implementation in WFH environment

Good morning , Scenario B is not recommended that is using RDP - remote desktop protocol. This should

Oct 23

PROF. JEGZY, … Julie Cooper23

Oct 23

My First Post here, new to the forum and Lone lead Implementer of ISO 27001 ISMS for my Org

Hey Harish, How did audit go? On Tue, Oct 5, 2021 at 7:27 AM 'Harish Kumar Munipally' via ISO

unread,

My First Post here, new to the forum and Lone lead Implementer of ISO 27001 ISMS for my Org

Hey Harish, How did audit go? On Tue, Oct 5, 2021 at 7:27 AM 'Harish Kumar Munipally' via ISO

Oct 23

Archit M, … Marappan Ramiah4

Oct 23

Dear all, I Would like to add that Governance is about setting the direction for the business that is

unread,

Dear all, I Would like to add that Governance is about setting the direction for the business that is

Oct 23

Churchill Blu, … Marappan Ramiah9

Oct 18

Review of the company ISMS policies

Dear all, When conducting risk assessment, one needs to look at the business objectives the

unread,

Review of the company ISMS policies

Dear all, When conducting risk assessment, one needs to look at the business objectives the

Oct 18

Archit M, … Marappan Ramiah4

Oct 18

Regarding exception review process ISO 27001

Dear all, To show that controls are in place and effective , the auditor should have objective

unread,

Regarding exception review process ISO 27001

Dear all, To show that controls are in place and effective , the auditor should have objective

Oct 18

Oct 18

Re: [ISO 27001 security] Abridged summary of iso27001security@googlegroups.com - 9 updates in 2 topics

Taking Compliance to the Cloud (my article, widely published) https://securityfeeds.us/taking-

unread,

Re: [ISO 27001 security] Abridged summary of iso27001security@googlegroups.com - 9 updates in 2 topics

Taking Compliance to the Cloud (my article, widely published) https://securityfeeds.us/taking-

Oct 18

Oct 14

ISAE 3402 Audit

Hello everyone , Just wondering if the experts in the house can assist me with this question . Does

unread,

ISAE 3402 Audit

Hello everyone , Just wondering if the experts in the house can assist me with this question . Does

Oct 14

Oct 13

Re: [ISO 27001 security] Digest for iso27001security@googlegroups.com - 2 updates in 1 topic

Done. For future reference, there is an unsubscribe link at the bottom of the group emails, and you

unread,

Re: [ISO 27001 security] Digest for iso27001security@googlegroups.com - 2 updates in 1 topic

Done. For future reference, there is an unsubscribe link at the bottom of the group emails, and you

Oct 13

Zachary Koopman

Oct 13

Vendors 'Outside the scope of the ISMS'

My organization (~80 staff) is having some frustration with our vendor onboarding process. We've

unread,

Vendors 'Outside the scope of the ISMS'

My organization (~80 staff) is having some frustration with our vendor onboarding process. We've

Oct 13

tweil...@gmail.com, Gary Hinson2

Oct 12

ISO-metrics and objectives for Suppliers (A.15.x)

Hi Tim. 'Heavily dependent' clearly implies that service availability is a key business

unread,

ISO-metrics and objectives for Suppliers (A.15.x)

Hi Tim. 'Heavily dependent' clearly implies that service availability is a key business

Oct 12

Oct 8

Re: [ISO 27001 security] Abridged summary of iso27001security@googlegroups.com - 5 updates in 1 topic

See also - Taking Compliance to the Cloud - https://securityfeeds.us/taking-compliance-cloud Tim Weil

unread,

Re: [ISO 27001 security] Abridged summary of iso27001security@googlegroups.com - 5 updates in 1 topic

See also - Taking Compliance to the Cloud - https://securityfeeds.us/taking-compliance-cloud Tim Weil

Oct 8

Nathaniel Konu, … Gary Hinson5

Oct 7

where can I find the CSA repository. Do I have to go and check their website. On Thursday, October 7,

unread,

where can I find the CSA repository. Do I have to go and check their website. On Thursday, October 7,

Oct 7

Jerry Lai, … Arup Roy7

Oct 6

Question IS policy and framework document

One way of looking at the framework: How the organisation addresses requirements of the clauses for

unread,

Question IS policy and framework document

One way of looking at the framework: How the organisation addresses requirements of the clauses for

Oct 6

Tim Weil, … Chris Hall4

Oct 6

ISO 27002:2013 - Control Selection

To take what Gary has said a bit further. My view is that what we do with controls is always a

unread,

ISO 27002:2013 - Control Selection

To take what Gary has said a bit further. My view is that what we do with controls is always a

Oct 6

Sashi Reddi, mike....@netfoundry.io4

Oct 4

Re: [ISO 27001 security] Abridged summary of iso27001security@googlegroups.com - 16 updates in 5 topics

For a general overview of a lot of items, I would go to the CISSP CBK. I doesn't go into great

unread,

Re: [ISO 27001 security] Abridged summary of iso27001security@googlegroups.com - 16 updates in 5 topics

For a general overview of a lot of items, I would go to the CISSP CBK. I doesn't go into great

Oct 4

Meysam, … Gary Hinson9

Oct 3

Annual Risk Assessment of a certified ISMS

Thank you so much for your responses and helpful advices. On Friday, 1 October 2021 at 10:15:24 am

unread,

Annual Risk Assessment of a certified ISMS

Thank you so much for your responses and helpful advices. On Friday, 1 October 2021 at 10:15:24 am

Oct 3

nzr...@gmail.com, … Gary Hinson7

Oct 3

Roles and Responsibilities

Thanks Chris, Yes I'm looking forward to an updated 27002, as it seams to have been left behing

unread,

Roles and Responsibilities

Thanks Chris, Yes I'm looking forward to an updated 27002, as it seams to have been left behing

Oct 3

Search

Clear search

Close search

Google apps

Main menu