iso27diy-corp/Corpus/Standards/ISO-27001-OST/ISO27001-EN-2022/c-7.3-Awareness.md

#iso27001/2022/EN

7.3 Awareness

Persons doing work under the organization's control shall be aware of:

a) the information security policy;

b) their contribution to the effectiveness of the information security management system, including the benefits of improved information security performance; and

c) the implications of not conforming with the information security management system requirements.