Escolar Documentos
Profissional Documentos
Cultura Documentos
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
misuse of information, or
services?
1. Is there a procedure
documenting when, and by
whom, contact with relevant
authorities (law enforcement
A.6.1.3 Contact with authorities etc.) will be made?
2. Is there a process which 0%
details how and when contact
is required?
3. Is there a process for routine
contact and intelligence
sharing?
Do relevant individuals within the
A.6.1.4 Contact with special interest groups organization maintain active 0%
membership in relevant special
interest groups?
Information security in Do all projects go through some
A.6.1.5
project management form of information security 0%
assessment?
A.6.2 MOBILE DEVICE AND TELEWORKING
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
1. Is there a policy
governing information
A.8.2.1 Classification of information
classification? 0%
2. Is there a process by which
all information can be
appropriately classified?
Is there a process or procedure for
A.8.2.2 Labelling of information ensuring information
classification is appropriately
0%
marked on each asset?
1. Is there a procedure for
handling each information 0%
A.8.2.3 Handling of assets
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
classification?
2. Are users of information assets
made aware of this procedure?
A.8.3 MEDIA HANDLING
1. Is there a policy
governing removable
media?
A.8.3.1 Management of removable media 2. Is there a process covering
how removable media is
0%
managed?
3. Are the policy and
process communicated
to all employees using
removable media?
Is there a formal procedure
A.8.3.2 Disposal of media
governing how removable media 0%
is disposed?
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
discovered?
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
1. Is information security
included in contracts established
Information security policy for with suppliers and service
A.15.1.1 providers?
supplier relationships
2. Is there an 0%
organization-wide risk
management approach
to supplier
relationships?
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
Is information security
A.17.1.1 Planning information security
included in the
continuity 0%
organization's continuity
plans?
Does the organization's
Implementing information information security function
A.17.1.2
security continuity have documented, implemented 0%
and maintained processes to
maintain continuity of service
during an adverse situation?
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
Do information processing
Availability of information
A.17.2.1 facilities have sufficient
processing facilities
redundancy to meet the 0%
organizations availability
requirements?
A.18 COMPLAINS
www.iascertification.com
ISO 27001 : 2013 COMPLIANCE CHECKLIST
www.iascertification.com