Documentation is the core of your ISO 27001 implementation. A good set of documents will enable your employees to understand their obligations better while poorly written documents or missing documents will cause confusion and resentment towards information security. Not to mention failing the certification audit.
Information Security & Business Continuity Academy released their ISO 27001 Documentation Toolkit. It consists of 37 documents, including all the mandatory documents and other recommended documentation:
- ISMS Policy
- ISMS Scope Document
- Risk Assessment Methodology
- Risk Treatment Plan
- Procedure for Document and Record Control
- Acceptable Use of Assets Policy
- Policy for Handling Classified Information
- Disposal and Destruction Policy
- Access Control Policy
- Clear Desk and Clear Screen Policy
- Incident Management Procedure
- and many others.
The documents in the ISO 27001 Documentation Toolkit are specially designed for smaller and medium-sized organizations, and can be purchased as part of the package or separately.
Take a look at the list of webinars and choose one of the 16 fee-based webinars you will get for free if you purchase this documentation Toolkit. Naturally, you can register for an unlimited number of our free webinars (you’ll see 6 of them).