richardk/iso27diy-corp
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Moved a directory, changed some filenames

Browse source
This commit is contained in:
Richard Kranendonk 2026-06-06 20:37:28 +02:00
parent ae27a60bcf
commit 347706835e
195 changed files with 696 additions and 255 deletions
Download patch file Download diff file Expand all files Collapse all files

8
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO 27001 in 27000 words.md
View file

@ -107,7 +107,7 @@ For example:
The scope of the ISMS is also the scope of your ISO 27001 certification, and as such will be visible to your stakeholders.
Relevant literature notes:
- [ISO 27001 examples of scope statements](../../ISO%2027001%20examples%20of%20scope%20statements.md)
- [ISO 27001 examples of scope statements](../../about/ISO%2027001%20examples%20of%20scope%20statements.md)
# Leadership, roles and responsibilities
ISO 27001 demands that top management must show leadership and commitment with regards to the ISMS, by:
@ -200,8 +200,8 @@ The idea is that you apply each and every one of them, unless you can convincing
You need to write down which controls from Annex A are, or will be applied by your organisation, in the so called Statement of Applicability.
Relevant notes:
- [ISO 27001 Approaching Annex A](../../ISO%2027001%20Approaching%20Annex%20A.md)
- [ISO 27001 Statement of Applicability](../../ISO%2027001%20Statement%20of%20Applicability.md)
- [ISO 27001 Approaching Annex A](../../about/ISO%2027001%20Approaching%20Annex%20A.md)
- [ISO 27001 Statement of Applicability](../../about/ISO%2027001%20Statement%20of%20Applicability.md)
# Documenting the ISMS
This picture of the ISMS was in one of the first slides:
@ -276,7 +276,7 @@ The certificate is valid for a period of 3 years, during which there will be 2 '
External audits should be performed by accredited certification bodies, listed on the International Accreditation Forum's website.
See [ISO 27001 Certification audit](../../ISO%2027001%20Certification%20audit.md)
See [ISO 27001 Certification audit](../../about/ISO%2027001%20Certification%20audit.md)
# Closing

2
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Video A.2 Context and Scope - Stakeholders.md
View file

@ -8,7 +8,7 @@ In this video you'll learn how to create a stakeholder analysis, identifying the
> C 4.2: interested parties relevant to the ISMS, and their requirements relevant to information security, including legal, regulatory and contractual obligations.
[ISO 31000 5.4.1](../../ISO31000-5.4.1-Understanding-the-organization-and-its-context.md):
[ISO 31000 5.4.1](../../about/ISO31000-5.4.1-Understanding-the-organization-and-its-context.md):
> Examine "external stakeholders relationships, perceptions, values, needs and expectations"

2
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Video A.3 Context and Scope - Regulations and Contracts.md
View file

@ -8,7 +8,7 @@ In this video you'll learn ...
> C 4.2: interested parties relevant to the ISMS, and their requirements relevant to information security, including legal, regulatory and contractual obligations.
>
> See also [ISO 31000 5.4.1](../../ISO31000-5.4.1-Understanding-the-organization-and-its-context.md)
> See also [ISO 31000 5.4.1](../../about/ISO31000-5.4.1-Understanding-the-organization-and-its-context.md)

2
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Video A.4 Context and Scope - Internal issues.md
View file

@ -8,7 +8,7 @@ In this video you'll learn how to document the *internal* issues in your organiz
> C 4.1: external and internal issues relevant to organizational goals and the performance of the ISMS
>
>See also [ISO 31000 5.4.1](../../ISO31000-5.4.1-Understanding-the-organization-and-its-context.md):
>See also [ISO 31000 5.4.1](../../about/ISO31000-5.4.1-Understanding-the-organization-and-its-context.md):
>
>Examining the organizations internal context may include, but is not limited to:
> - vision, mission and values;

2
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Video A.5 Context and Scope - Scope statement.md
View file

@ -6,7 +6,7 @@
>
> The scope shall be available as documented information.
>
> See also [ISO 31000 5.4.1](../../ISO31000-5.4.1-Understanding-the-organization-and-its-context.md)
> See also [ISO 31000 5.4.1](../../about/ISO31000-5.4.1-Understanding-the-organization-and-its-context.md)
You've now covered Clause 4.3: [Determining the scope of the ISMS](../ISO%2027001%202013/ISO%2027001_OT%20C%204%20Context%20of%20the%20organization.md#4%203%20Determining%20the%20scope%20of%20the%20information%20security%20management%20system).

2
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Video B.1 Processes and Assets - Business processes.md
View file

@ -6,7 +6,7 @@
>
> The scope shall be available as documented information.
>
> See also [ISO 31000 5.4.1](../../ISO31000-5.4.1-Understanding-the-organization-and-its-context.md)
> See also [ISO 31000 5.4.1](../../about/ISO31000-5.4.1-Understanding-the-organization-and-its-context.md)
You've now PARTIALLY covered Clause 4.3: [Determining the scope of the ISMS](../ISO%2027001%202013/ISO%2027001_OT%20C%204%20Context%20of%20the%20organization.md#4%203%20Determining%20the%20scope%20of%20the%20information%20security%20management%20system).

2
Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Video B.2 Processes and Assets - Interfaces and dependencies.md
View file

@ -6,7 +6,7 @@
>
> The scope shall be available as documented information.
>
> See also [ISO 31000 5.4.1](../../ISO31000-5.4.1-Understanding-the-organization-and-its-context.md)
> See also [ISO 31000 5.4.1](../../about/ISO31000-5.4.1-Understanding-the-organization-and-its-context.md)