This rule is about information transfer that says a company must have policies, plans, or agreements to make sure information is transferred safely. This includes all types of transfers, both inside the company and with other groups. What is Information Transfer? Information transfer is usually defined as the process of sending data or knowledge between […]
ISO 27001 Annex A 5.14 – Information Transfer Read More »
ISO 27001 Annex A 5.13 is all about labelling information. This rule is a key part of your security plan. It makes sure that important data is clearly marked. This helps people know how to handle and share it safely. It also helps computers handle data the right way. What is labelling of information? Information
ISO 27001 Annex A 5.13 – Labelling Of Information Read More »
ISO 27001 Annex A 5.12 is about how a company should classify its information. This means sorting information into groups based on how important and sensitive it is. By doing this, a company can make sure it protects its most important data the right way. What Is Information Classification? Information classification is a way to
ISO 27001 Annex A 5.12 – Classification Of Information Read More »
The ISO 27001 Annex A 5.11 rule says that people must return all company items when they leave a job. This includes employees and outside workers. The main goal is to keep company information safe. It makes sure that no one keeps things they should not have. What to Return An asset is anything that
ISO 27001 Annex A 5.11 – Return Of Assets Read More »
ISO 27001 Annex A 5.10 is about making rules for how people can use a company’s information and other assets. The goal is to make sure that these items are used safely and correctly. This helps keep data private, correct, and available. What is ISO 27001 Annex A 5.10? The latest version of the ISO
ISO 27001 Annex A 5.10 – Acceptable Use Of Information And Other Associated Assets Read More »
ISO 27001 Annex A 5.9 is about making a list of a company’s information and other important items. This list is a key part of keeping data safe. The rule says that a list of information and other assets, along with their owners, must be made and kept up to date. What is ISO 27001
ISO 27001 Annex A 5.9 – Inventory Of Information And Other Associated Assets Read More »
ISO 27001 Annex A 5.8 is about making sure that security is a part of how you manage projects. This rule helps you handle security risks during a project, from the very beginning to the very end. The main idea is that security should be built into your projects, not just added on at the
ISO 27001 Annex A 5.8 – Information Security In Project Management Read More »
ISO 27001 Annex A 5.7 is about threat intelligence. This is a new control in the 2022 update to the standard. It asks organizations to collect and study information about security threats. The goal is to be proactive and take action to stop threats before they cause harm. What Is Threat Intelligence? Threat intelligence is the
ISO 27001 Annex A 5.7 – Threat Intelligence Read More »
ISO 27001 Annex A 5.6 is a rule about a company staying in touch with outside groups that care about information security. This helps the company get new knowledge and stay up to date. What is Contact With Special Interest Groups? This rule asks a company to connect with special interest groups, like security forums or
ISO 27001 Annex A 5.6 – Contact With Special Interest Groups Read More »
ISO 27001 Annex A 5.5 is about a company keeping in touch with important authorities. The main goal is to make sure information about security flows the right way between the company and groups like law enforcement or government bodies. This helps a company stay safe and follow the law. What is ISO 27001 Annex
ISO 27001 Annex A 5.5 – Contact With Authorities Read More »