From c8bf7118f1b9134aef74686b38f67dd540ea5ec2 Mon Sep 17 00:00:00 2001 From: Richard Kranendonk Date: Thu, 7 May 2026 17:19:20 +0200 Subject: [PATCH] moved file, links were adjusted --- Corpus/Sparks/How to work the Kanban.md | 2 +- .../About ISO27DIY Policy Cards.md | 20 +++++++++---------- .../ISO27DIY Implementation method.md | 2 +- ...Working back from the Annex A dashboard.md | 2 +- 4 files changed, 13 insertions(+), 13 deletions(-) rename Corpus/Standards/ISO27x/legacy/{ => iso27DIY mk I}/About ISO27DIY Policy Cards.md (59%) diff --git a/Corpus/Sparks/How to work the Kanban.md b/Corpus/Sparks/How to work the Kanban.md index c8593f0..4e76c32 100644 --- a/Corpus/Sparks/How to work the Kanban.md +++ b/Corpus/Sparks/How to work the Kanban.md @@ -18,7 +18,7 @@ There wil also be other project todos specific for the organization. Incorporate ## PDCA cycle Controls from Annex A 'come alive' by connecting them to a real world Risk. Next, a Policy had to be defined (we are going to mitigate this risk by ...), the implementation of the Control and its associated Measuring mechanism needs to be planned, then after the Implementation the measurements need to be Evaluated and additional actions need to be identified (and planned) for the next cycle. -Related: [About ISO27DIY Policy Cards](../Standards/ISO27x/legacy/About%20ISO27DIY%20Policy%20Cards.md) +Related: [About ISO27DIY Policy Cards](../Standards/ISO27x/legacy/iso27DIY%20mk%20I/About%20ISO27DIY%20Policy%20Cards.md) ## Activities and Artifacts diff --git a/Corpus/Standards/ISO27x/legacy/About ISO27DIY Policy Cards.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/About ISO27DIY Policy Cards.md similarity index 59% rename from Corpus/Standards/ISO27x/legacy/About ISO27DIY Policy Cards.md rename to Corpus/Standards/ISO27x/legacy/iso27DIY mk I/About ISO27DIY Policy Cards.md index 9ee8483..3194b57 100644 --- a/Corpus/Standards/ISO27x/legacy/About ISO27DIY Policy Cards.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/About ISO27DIY Policy Cards.md @@ -1,8 +1,8 @@ # About ISO27DIY Policy Cards -Policies are part of the collection of [Advised Documents for ISO 27001](../../../../../iso27DIY-gis/reference/Advised%20Documents%20for%20ISO%2027001.md). +Policies are part of the collection of [Advised Documents for ISO 27001](../../../../../../iso27DIY-gis/reference/Advised%20Documents%20for%20ISO%2027001.md). -These could have the shape of 'Policy Cards', produced at the end of each session of the [📼 ISO27DIY Video Series](iso27DIY%20mk%20I/📼%20ISO27DIY%20Video%20Series.md). +These could have the shape of 'Policy Cards', produced at the end of each session of the [📼 ISO27DIY Video Series](📼%20ISO27DIY%20Video%20Series.md). Because the policies produced at the end of a session need to be expanded and adapted to the organization, there will be a corresponding action in the ISMS planning. @@ -15,18 +15,18 @@ After the Risk and Assets phase – more specifically, after the asset categorie Policy Cards are generated from risks identified and controls defined. They are not editable. They *can* be exported to an (editable) document. -A Policy Card has a fixed format, see [ISO27DIY Policy Card template](iso27DIY%20mk%20I/📒%20Templates/ISO27DIY%20Policy%20Card%20template.md). +A Policy Card has a fixed format, see [ISO27DIY Policy Card template](📒%20Templates/ISO27DIY%20Policy%20Card%20template.md). ISO 27002:2013 offers the following guidance for A 5.1.1 Policies for information security: “These policies should be communicated to employees and relevant external parties in a form that is relevant, accessible and understandable to the intended reader, e.g. in the context of an ‘information security awareness, education and training programme’ ”. Related ISO clauses and controls: -- [ISO 27001 A 5.1.1 Policies for information security](ISO%2027001%202013/ISO%2027001%20A%205.1.1%20Policies%20for%20information%20security.md) -- [ISO_27001_OT C 5.2 Policy](ISO%2027001%202013/ISO_27001_OT%20C%205.2%20Policy.md) +- [ISO 27001 A 5.1.1 Policies for information security](../ISO%2027001%202013/ISO%2027001%20A%205.1.1%20Policies%20for%20information%20security.md) +- [ISO_27001_OT C 5.2 Policy](../ISO%2027001%202013/ISO_27001_OT%20C%205.2%20Policy.md) Related ideas: -- [ISO27DIY Recipe for Policy Cards](iso27DIY%20mk%20I/ISO27DIY%20Recipe%20for%20Policy%20Cards.md) -- [BC5701_Training_Tab_03_MS](../../BC%205701/BC5701_Training_Tab_03_MS.md#Beleid) -- [Modules, Screens and Content](../../../Drafts%20and%20Ideas/Modules,%20Screens%20and%20Content.md) -- [🧰 Resource portal](iso27DIY%20mk%20I/🧰%20Resource%20portal.md) -- [Topical InfoSec Kanban’s](../../../Literature%20notes/Topical%20InfoSec%20Kanban’s.md) +- [ISO27DIY Recipe for Policy Cards](ISO27DIY%20Recipe%20for%20Policy%20Cards.md) +- [BC5701_Training_Tab_03_MS](../../../BC%205701/BC5701_Training_Tab_03_MS.md#Beleid) +- [Modules, Screens and Content](../../../../Drafts%20and%20Ideas/Modules,%20Screens%20and%20Content.md) +- [🧰 Resource portal](🧰%20Resource%20portal.md) +- [Topical InfoSec Kanban’s](../../../../Literature%20notes/Topical%20InfoSec%20Kanban’s.md) diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Implementation method.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Implementation method.md index fb81550..ccfa903 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Implementation method.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Implementation method.md @@ -71,7 +71,7 @@ Take into consideration that there are specific requirements for 'documented inf ## Tooling provisions -- [About ISO27DIY Policy Cards](../About%20ISO27DIY%20Policy%20Cards.md) +- [About ISO27DIY Policy Cards](About%20ISO27DIY%20Policy%20Cards.md) - [ISO27DIY Kanban board](ISO27DIY%20Kanban%20board.md) ## Related diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/Working back from the Annex A dashboard.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/Working back from the Annex A dashboard.md index e80b3e6..9750542 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/Working back from the Annex A dashboard.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/Working back from the Annex A dashboard.md @@ -1,5 +1,5 @@ Start with the [](../../../../Attachments/ISO%2027001%20Implementatie%20dashboard%20Annex%20A.xlsx) as a framework. Every cell gets one or more corresponding [ISO27DIY Kanban board](ISO27DIY%20Kanban%20board.md) items. So they are all linked to at least one of the ISO 27001 controls or ISO 27001 clauses. -Note that in this approach all [About ISO27DIY Policy Cards](../About%20ISO27DIY%20Policy%20Cards.md), [Advised Documents for ISO 27001](../../../../../../iso27DIY-gis/reference/Advised%20Documents%20for%20ISO%2027001.md), and identified risks and controls will appear on the Kanban board, directly or indirectly. +Note that in this approach all [About ISO27DIY Policy Cards](About%20ISO27DIY%20Policy%20Cards.md), [Advised Documents for ISO 27001](../../../../../../iso27DIY-gis/reference/Advised%20Documents%20for%20ISO%2027001.md), and identified risks and controls will appear on the Kanban board, directly or indirectly.