My company has multiple business units which offer multiple products and also maintain their own ISMS documents. I have two questions:
1. In which document should “Context of the Organization” be documented in? In the Manual or should it be documented in “ISMS Context, Scope and Policy Statement” document?
2. Do you have a good resource or a guide as to how I can go about consolidating two ISMS into one master?
For the context: I under ISO 27k on a very basic (conceptual) level and I am trying to learn and also do this project for my company.