ISO 27K Compliance Support Toolkit - Book 1 (PDF)

Overview and Objective: This is the first of a series of four support books. These contain a set of plans, policies, procedures and complementary guidance (Recommended Compliance Measures-RCMs), an example of a Statement of Applicability and an example of a Gap Assessment. The objective of these is to support you to better comply with the requirements of the controls of Annex A of the new information security standard ISO 27001 and ISO 27002, version 2022).

This book (ISO 27K Compliance Support Tool Kit 1) includes several (91) recommended security compliance measures (RCMs), such as: over 28 Plans, over 12 Policies, over 27 Procedures and over 18 Other Support Tools. These are designed to support you in implementing better the thirty-seven (37) ISO 27K controls and their requirements outlined in ISO 27001:2022, Annex A5, Organizational Controls.

Contents

Chapter 1. Summary: Organizational Controls and Compliance Measures
Chapter 2. RCMs for Information Security Policy
Chapter 3. RCMs for Information Security Management Responsibilities
Chapter 4. RCMs for Threat Intelligence and Information Security in Project Management
Chapter 5. RCMs for Information Assets Management
Chapter 6. RCMs for Information Classification and Transfer
Chapter 7. RCMs for Access Control and Identity Management
Chapter 8. RCMs for Suppliers' Management
Chapter 9. RCMs for Information Security Incident Management
Chapter 10. RCMs for IT Continuity Management
Chapter 11. RCMs for Legal and Other Aspects Management and Records Protection
Chapter 12. RCMs for Privacy, Compliance and Operating Procedures
Additional Resources