procedures, instructions, specifications, guidelines, and criteria, etc. The term “document” is defined as information created in order for the organization to operate e.g. The example of documented information can be a record, specification, procedure, drawing, report, standard, etc. The “documented information” is defined as the information required to be controlled and maintained by an organization and the medium on which it is contained. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The Information Security Management System preserves the confidentiality, integrity, and availability of information by applying a risk management process and gives confidence to interested parties that risks are adequately managed. ISO 27001 is an international standard that specifies the requirements to establish, implement, maintain, and continually improve an Information Security Management System (ISMS).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |