Hi members, Thanks for your sharing your thoughts on the asset definition. My next question is clause 8.1 talks abt continual Improvement, from an auditors...
Hi, I have gone through a couple of surveillance audits. Continous improvement in terms of analysis and review of levels of Customer satisfaction, analysis of...
From my experience in implementing 9001 and 7799, there is a finer point that needs to be understood here - the difference between CONTINOUS and CONTINUAL...
We are currently working on preparing for a stage 1 audit for ISO 27001, and we have retained the services of a consultant. We feel quite confident at this...
Michael Parker
arviragus@...
Feb 15, 2006 5:55 pm
35
We are currently working on preparing for a stage 1 audit for ISO 27001, and we have retained the services of a consultant. We feel quite confident at this...
Michael Parker
arviragus@...
Feb 15, 2006 5:58 pm
36
Hi, It is an interesting query. Am giving many perspectives and hope it is useful for you. These are my personal views: 1.If your nature of business (and...
Beautifully explained, Sekar! Nishanth Chandra Sekar <sekarsc@...> wrote: Hi, It is an interesting query. Am giving many perspectives and hope it is...
Dear Michael, While Sekar has well outlined the general requirements related to your issue, however I think it is more to do with your demostrating the fact...
Hi, There isn't any requirement in the standard to cover all the required inputs (clause 7.2)in all the monthly meetings (in your case GSF). you have to cover...
The measurement metrics doc is one of the mandatory documents at the time of ISO27001 audit. Measurement metrics is to check the effectiveness of the controls...
I have a question. How do you rate the six points on the backup process? As I know that quantitative measurement is mandatory and it is for control and monitor...
Dear all, My name is Chelsia. I am an industrial engineering student who are cureently composing my final year paper about gap-handling priority in aiming ISO...
Hi Chelsia, The gap handling priority depends on factors like the nature of business of the company, its environment, etc. Different industries have different...
Hi, Preliminary thoughts - When you say "gap", you must first have an understanding of "where you want to be?" and "where you are?" right now. - Where you want...
Hi Chelsia, Gap analysis is done on the basis of controls in the ISO27001 code of practice.. The process owners are interviewed. All the controls are discussed...
GAP is the difference between what should be and what is (presently) Arithmetically, GAP = A(what should be) -- B (what is now). Analysing this to find out...
Dear Sir/Madam Let me introduce myself. My name is Erica.I am an Industrial Engineering college student. I have been writing my final paper about Training...
Hi Erica, Yes you are right. Firstly populate the skill sets requried for all the identified functions or designations. document the desired level for each...
By determining the competencies you will undoubtedly discover the gaps. That is more of an Audit view. You can create a proactive TNA Process by creating RACI...
Hi Chelsia, For conducting a Gap Analysis, u may prepare questionnaires based on the controls present in the ISO 27001 standard and interview the process...
Hi Chelsia, For conducting a Gap Analysis, u may prepare questionnaires based on the controls present in the ISO 27001 standard and interview the process...
To: Erica Febrianti This requirement has its roots in ISO 9001 and has been carried over to ISO 14001 and now ISO 27001. The requirement has a lot of merit and...
Note: forwarded message attached. ... Yahoo! Messenger with Voice. Make PC-to-Phone Calls to the US (and 30+ countries) for 2ΒΆ/min or less. Note: forwarded...
Hi everybody, Need a help from you all. I am doing a ISO27001 assessment for one of the client. If somebody has some document in mapping ISO27001 to SOX then...
hi When you do a GAP analysis (iso27001) the output should exhibit the security weakness ie whether controls are in place or not... questionnaire approach is...
Hi ! Amiya,Pls. see the attached file if it helps. Regards ... ___________________________________________________________ 24 FIFA World Cup tickets to be won...
Hi, I would like to start a thread on the following queries . 1. What is the true value of Risk Analysis for your organization? 2. What are the units which you...
Anup- I believe that the true value of risk analysis lies in helping the organization business managers in take risk based business decisions. This can only be...
Having problems with message search?
Fill out this form to ensure your group is one of the first to be migrated to the new message search system.
