richardk/iso27diy-corp
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

removed emojis, merged 2 folders, removed duplication

Browse source
This commit is contained in:
Richard Kranendonk 2026-05-11 16:47:35 +02:00
parent 9b7b3a3a85
commit 24403ce731
92 changed files with 106 additions and 1432 deletions
Download patch file Download diff file Expand all files Collapse all files

4
Corpus/Standards/ISO27x/Authentication.md
View file

@ -6,7 +6,7 @@ Authentication is the proof of identity that is achieved through providing crede
See also:
- [a-8.5-Secure-authentication](OST/27002/EN/a-8.5-Secure-authentication.md)
- [Authentication Methods Used for Network Security](../../Literature%20notes/Authentication%20Methods%20Used%20for%20Network%20Security.md)
- [Identity and Access Management (IAM)](../../Drafts%20and%20Ideas/Identity%20and%20Access%20Management%20(IAM).md)
- [Identity and Access Management (IAM)](../../Sparks/Identity%20and%20Access%20Management%20(IAM).md)
- [Authorization](Authorization.md)
- [Identification](../../Drafts%20and%20Ideas/Identification.md)
- [Identification](../../Sparks/Identification.md)

4
Corpus/Standards/ISO27x/Authorization.md
View file

@ -5,9 +5,9 @@ See also:
- [Authorization vs Access Control](../../Sparks/Authorization%20vs%20Access%20Control.md)
- [Access Control Models](../../Sparks/Access%20Control%20Models.md)
- [Authentication](Authentication.md)
- [Identification](../../Drafts%20and%20Ideas/Identification.md)
- [Identification](../../Sparks/Identification.md)
- [CASSM Consumer Authentication Strength Maturity Model](../../Literature%20notes/CASSM%20Consumer%20Authentication%20Strength%20Maturity%20Model.md)
- [Identity and Access Management (IAM)](../../Drafts%20and%20Ideas/Identity%20and%20Access%20Management%20(IAM).md)
- [Identity and Access Management (IAM)](../../Sparks/Identity%20and%20Access%20Management%20(IAM).md)
- [a-5.15-Access-control](OST/27002/EN/a-5.15-Access-control.md) ???

2
Corpus/Standards/ISO27x/Governance model for Policies and Controls.md
View file

@ -2,7 +2,7 @@
Based on ISO 27001 and ISO 27002, a governance model for your ISMS should be structured around **Top Management's accountability** while delegating the **tactical execution** to specific information security roles.
*See [Basic ISMS governance model](../../Drafts%20and%20Ideas/ISMS/Basic%20ISMS%20governance%20model.md) for a compacted version*
*See [Basic ISMS governance model](../../Sparks/ISMS/Basic%20ISMS%20governance%20model.md) for a compacted version*
## Related to the Policies Lifecycle
Here is a suggested governance model mapping the lifecycle of security policies (commissioning, drafting, approving, etc.) to the specific roles mandated by the standards.

2
Corpus/Standards/ISO27x/MoC Roles and responsibilities in ISO 27001.md
View file

@ -7,7 +7,7 @@ Recent:
- [ISO 27001 Leadership Responsibilities](ISO%2027001%20Leadership%20Responsibilities.md)
- [ISO 27001 Top Management responsibilities](ISO%2027001%20Top%20Management%20responsibilities.md)
- [Governance model for Policies and Controls](Governance%20model%20for%20Policies%20and%20Controls.md)
- [Basic ISMS governance model](../../Drafts%20and%20Ideas/ISMS/Basic%20ISMS%20governance%20model.md)
- [Basic ISMS governance model](../../Sparks/ISMS/Basic%20ISMS%20governance%20model.md)
- [m400-more-governance](../../../../iso27DIY-gis/guide/m400/m400-more-governance.md)
Older:

2
Corpus/Standards/ISO27x/PECB-Lead-Auditor-Training/PECB 27001 LA S05 E03a - Risk treatment.md
View file

@ -50,4 +50,4 @@ The controls in Annex A are often described in just one or two sentences. You mu
## Footnotes
[^1]: There's also a [Clause 8.3](../../../MoCs/ISO_27001_2022_8.3_MoC%20Information%20security%20risk%20treatment.md) Information security risk treatment in ISO 27001. It's very short: The organization shall implement the information security risk treatment plan, and it shall retain documented information on the treatments' results.
[^2]: See also [About the Statement of Applicability](../../../Drafts%20and%20Ideas/ISMS/About%20the%20Statement%20of%20Applicability.md).
[^2]: See also [About the Statement of Applicability](../../../Sparks/ISMS/About%20the%20Statement%20of%20Applicability.md).

2
Corpus/Standards/ISO27x/legacy/ISO 27001 2013/ISO 27001 A 8.2.2 Labelling of information.md
View file

@ -3,4 +3,4 @@
An appropriate set of procedures for information labelling shall be developed and implemented in accordance with the information classification scheme adopted by the organization.
Related:
- [Labeling of information in the digital domain](../../../../Drafts%20and%20Ideas/Labeling%20of%20information%20in%20the%20digital%20domain.md)
- [Labeling of information in the digital domain](../../../../Sparks/Labeling%20of%20information%20in%20the%20digital%20domain.md)

2
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/About ISO27DIY Policy Cards.md
View file

@ -27,6 +27,6 @@ Related ISO clauses and controls:
Related ideas:
- [ISO27DIY Recipe for Policy Cards](ISO27DIY%20Recipe%20for%20Policy%20Cards.md)
- [BC5701_Training_Tab_03_MS](../../../BC%205701/BC5701_Training_Tab_03_MS.md#Beleid)
- [Modules, Screens and Content](../../../../Drafts%20and%20Ideas/Modules,%20Screens%20and%20Content.md)
- [Modules, Screens and Content](../../../../Sparks/Modules,%20Screens%20and%20Content.md)
- [🧰 Resource portal](🧰%20Resource%20portal.md)
- [Topical InfoSec Kanbans](../../../../Literature%20notes/Topical%20InfoSec%20Kanbans.md)

2
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO 27001 structure diagram.md
View file

@ -1,6 +1,6 @@
The following picture is actually about a more general 'IT Service Managment system' but can be adapted to clarify the structure of [ISO 27001 A.13.2 Information transfer](../ISO%2027001%202013/ISO%2027001%20A.13.2%20Information%20transfer.md).
![](../../../../Drafts%20and%20Ideas/Service%20management%20system%20block%20diagram.png)
![](../../../../Sparks/Service%20management%20system%20block%20diagram%201.png)
Source: https://theartofservice.com/wp-content/uploads/2021/07/Picture-1.png

6
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Business drivers.md
View file

@ -1,3 +1,3 @@
- [Perverse prikkels in de normindustrie](../../../../Drafts%20and%20Ideas/Perverse%20prikkels%20in%20de%20normindustrie.md)
- [GRC software is geschreven voor domeindeskundigen](../../../../Drafts%20and%20Ideas/GRC%20software%20is%20geschreven%20voor%20domeindeskundigen.md)
- [Problems solved](../../../../Drafts%20and%20Ideas/Problems%20solved.md)
- [Perverse prikkels in de normindustrie](../../../../Sparks/Perverse%20prikkels%20in%20de%20normindustrie.md)
- [GRC software is geschreven voor domeindeskundigen](../../../../Sparks/GRC%20software%20is%20geschreven%20voor%20domeindeskundigen.md)
- [Problems solved 1](../../../../Sparks/Problems%20solved%201.md)

4
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Business model.md
View file

@ -1,9 +1,9 @@
Child notes:
- [Blurbs](../../../../Sparks/Blurbs.md)
- [Toegevoegde waarde van ISO27DIY](../../../../Drafts%20and%20Ideas/Toegevoegde%20waarde%20van%20ISO27DIY.md)
- [Toegevoegde waarde van ISO27DIY 1](../../../../Sparks/Toegevoegde%20waarde%20van%20ISO27DIY%201.md)
- [Friendly targets](../../../../../../💡Permanent%20ideas/Friendly%20targets.md)
- [Possible Colabs](../../../../Sparks/Possible%20Colabs.md)
- [List of possible partners](../../../../Drafts%20and%20Ideas/List%20of%20possible%20partners.md)
- [List of possible partners 1](../../../../Sparks/List%20of%20possible%20partners%201.md)
- [ISO27DIY Business drivers](ISO27DIY%20Business%20drivers.md)
- [AuditGlue Business model](../AuditGlue%20Business%20model.md)
- [[### Related notes

4
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/💾 AuditGlue software.md
View file

@ -4,9 +4,9 @@ Pivoting away from 'guided implementation management' to:
Related:
- [Three user modes for AuditGlue](../../../../Drafts%20and%20Ideas/Three%20user%20modes%20for%20AuditGlue.md)
- [Three user modes for AuditGlue](../../../../Sparks/Three%20user%20modes%20for%20AuditGlue.md)
- [Distributed usage of AuditGlue](../../../../../../Permanent%20ideas/Distributed%20usage%20of%20AuditGlue.md)
- [Modules, Screens and Content](../../../../Drafts%20and%20Ideas/Modules,%20Screens%20and%20Content.md)
- [Modules, Screens and Content](../../../../Sparks/Modules,%20Screens%20and%20Content.md)
- [AuditGlue ERD](../AuditGlue%20ERD.md)
- [AuditGlue Business model](../AuditGlue%20Business%20model.md)

2
Corpus/Standards/other/C2M2 Cybersecurity Capability Maturity.md
View file

@ -8,5 +8,5 @@ Documentation, tools, practices and self-evaluation tools can be found through [
![](C2M2%20Version%202.1%20June%202022.pdf)
Related:
- [Operational Technology](../../Drafts%20and%20Ideas/Operational%20Technology.md)
- [Operational Technology](../../Sparks/Operational%20Technology.md)
- [IEC 62443 Cybersecurity for operational technology in automation and control systems](IEC%2062443%20Cybersecurity%20for%20operational%20technology%20in%20automation%20and%20control%20systems.md)