information technology

ISO 27001 Annex Explained

The Annex A of the ISO 27001 is also known as the Statement of Applicability (SOA). Because each organization differs, each organization must write its SOA. The Annex A of the ISO 27001 starts from A5-A18. These contain the information security operations controls which are important for managing and improving information security. Annex A5 Information …

ISO 27001 Annex Explained Read More »

ISO 27001

The ISO 27001 is designed to offer a guide and explanation on information security management system (ISMS). It covers a risk assessment process, organizational structure, Information classification, Access control mechanisms, physical and technical safeguards, Information security policies, procedures, monitoring, and reporting guidelines. There are no specific tools, solutions, or methods, but instead functions as a …

ISO 27001 Read More »