T
Hello everbody..
I know there are many ISMS specialist here.
I would like to do a little survey on ISMS implementation.
I like to know who in-charge(multiple answers are acceptable) in tasks below.
Please answer questions below.
Who...
As example
Q who define ISMS Scope
A CEO, CISO, Security committee, etc.
BTW, if anybody have any references for information above, it will be a good help if you can share with me here.
Thank you in advance.
I know there are many ISMS specialist here.
I would like to do a little survey on ISMS implementation.
I like to know who in-charge(multiple answers are acceptable) in tasks below.
Please answer questions below.
Who...
- define ISMS Scope
- define ISMS Policy
- define a Risk Assessment approach
- identify Risk
- analysis and evaluate risk
- perform risk treatment
- select control objectives and control
- prepare a Statement of Applicability
- approve residual risks
- implement controls
- carry out training and awareness
- manage Operations
- manage Resources
- implement detective and reactive controls for security incidents
- monitor procedures and controls
- review ISMS regularly
- review management
- carry out improvement measures
- communicate the action that has been taken
As example
Q who define ISMS Scope
A CEO, CISO, Security committee, etc.
BTW, if anybody have any references for information above, it will be a good help if you can share with me here.
Thank you in advance.