Kipp_Szeth
Registered
Hi All,
We have an upcoming ISO 27001 Surveillance and Certification Audit on December 2017 and I want to get clarity on what is the correct way of doing it for Asset-Based and Context-Based Risk Assessment.
I want to pound more on Context-Based Risk Assessment as I am confused on How and What's the correct way of doing it and how to treat it per process.
I work on a BPO set-up and all your inputs are greatly appreciated. Samples would be great, too!
Thank you very much!
We have an upcoming ISO 27001 Surveillance and Certification Audit on December 2017 and I want to get clarity on what is the correct way of doing it for Asset-Based and Context-Based Risk Assessment.
I want to pound more on Context-Based Risk Assessment as I am confused on How and What's the correct way of doing it and how to treat it per process.
I work on a BPO set-up and all your inputs are greatly appreciated. Samples would be great, too!
Thank you very much!