Security Policy: Difference between revisions

Revision as of 09:50, 27 July 2019 view source Duykhang.nguyen (talk \| contribs) 64 edits m →Information security risk treatment ← Older edit		Revision as of 09:51, 27 July 2019 view source Duykhang.nguyen (talk \| contribs) 64 edits m →Information security risk treatment Newer edit →
Line 121:		Line 121:

	<small>NOTE Organizations can design controls as required, or identify them from any source. </small>		<small>NOTE Organizations can design controls as required, or identify them from any source. </small>

	# Compare the controls determined above with those in Annex A of ISO/IEC 27001:2013 and verify that no necessary controls have been omitted;		# Compare the controls determined above with those in Annex A of ISO/IEC 27001:2013 and verify that no necessary controls have been omitted;

Navigation menu