We deliver high quality end to end ISO implementations and certification for organisations.
OBTAINING ISO 27001 CERTIFICATION FOR YOUR ORGANISATION THROUGH 3rd PARTY AUDIT.
The standard is divided into management system controls and annexure controls – also known as detail controls.
Management System Controls (Clause 4 to 10)
|
Clause 1 – Scope
Clause 2 – Normative references Clause 3 – Terms and definitions Clause 4 – Context of the organisation Clause 5 – Leadership Clause 6 – Planning
Clause 7 – Support Clause 8 – Operation Clause 9 – Performance Evaluation Clause 10 – Improvement |
Annexure Controls (14 domains 35 control objectives and 114 detail controls)
|
A.5 Security policies
A.6 Organization of information security A.7 Human resource security A.8 Asset Management A.9 Access control A.10 Cryptography A.11 Physical and environmental security A.12 Operations Security A.13 Communications security
A.14 System acquisition, development and maintenance A.15 Supplier relationships A.16 Information security incident management A.17 Information security aspects of business continuity management A.18 Compliance |