April 30, 2021

Newbie to ISO27k, have two questions around ISMS

My company has multiple business units which offer multiple products and also maintain their own ISMS documents. I have two questions:

1. In which document should “Context of the Organization” be documented in? In the Manual or should it be documented in “ISMS Context, Scope and Policy Statement” document?

2. Do you have a good resource or a guide as to how I can go about consolidating two ISMS into one master?

For the context: I under ISO 27k on a very basic (conceptual) level and I am trying to learn and also do this project for my company.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.