• 0 Posts
  • 5 Comments
Joined 1 year ago
cake
Cake day: November 13th, 2023

help-circle



  • From wikipedia for those, like me, that don’t know about ISO27001 :

    ISO/IEC 27001 requires that management:

    Systematically examine the organization’s information security risks, taking account of the threats, vulnerabilities, and impacts;

    Design and implement a coherent and comprehensive suite of information security controls and/or other forms of risk treatment (such as risk avoidance or risk transfer) to address those risks that are deemed unacceptable; and

    Adopt an overarching management process to ensure that the information security controls continue to meet the organization’s information security needs on an ongoing basis.