filmov
tv
ISO27001 - Clause 6 (Planning) Explained
Показать описание
In ISO27001, Clause 6 we start talking about Risk Assessment and Risk Treatment. In truth, this is Risk Management and is a fundamental part of the Information Security Management System (ISMS).
If you're trying to implement ISO27001 without understanding risk, or what risks there are in your organisation, then not only will you find it difficult, but you'll fail the audit!
Clause 6 includes;
6.1 Actions to address risks and opportunities
6.1.1 - General
6.1.2 - Information Security Risk Assessment
6.1.3 - Information Security Risk Treatment
6.2 Information Security Objectives and Planning To Achieve Them
6.3 - Planning of Changes
If you're trying to implement ISO27001 without understanding risk, or what risks there are in your organisation, then not only will you find it difficult, but you'll fail the audit!
Clause 6 includes;
6.1 Actions to address risks and opportunities
6.1.1 - General
6.1.2 - Information Security Risk Assessment
6.1.3 - Information Security Risk Treatment
6.2 Information Security Objectives and Planning To Achieve Them
6.3 - Planning of Changes
0:22:48
0:10:12
0:06:28
0:26:19
0:12:40
0:32:19
0:50:09
0:30:13
0:53:39
0:05:15
1:19:59
0:09:46
0:50:11
0:05:28
0:09:53
0:48:33
0:06:41
0:08:30
0:49:04
0:13:57
0:07:11
0:06:34
0:11:15
0:00:52