The ISMS manual covers the implementation of the requirements of ISO 27001 chapters 4 to 10. This template regulates the scope of the information security management system (ISMS), the business environment of the security requirements, the organisation and responsibilities. Furthermore, the opportunities and risks of the ISMS, the management of information security risks, information security objectives and competences are regulated.
Template ISMS manual according to ISO 27001
€ 480,00
excl. VAT
Description
In addition to the ISMS scope, the business environment, the organisation and responsibilities, the opportunities and risks, the management of InfoSec risks and objectives, the second part of the document defines the required information security awareness, the communication matrix, the document governance, the evaluation of the ISMS performance through key performance indicators (KPI), as well as the planning and execution of internal audits.
In addition, the ISMS manual describes in detail the periodic management assessment, as well as the continuous improvement of the ISMS and an action tracking.
The ISMS manual requires an existing risk management method for InfoSec risks. If this method and assessment do not exist, we recommend the additional package Template InfoSec Risk Management Method and Risk Assessment.
The template comprises approx. 12 pages and offers a quick planning and implementation of a management system according to ISO 27001 for small and medium-sized companies. The methods and specifications are widely used by companies and have been tested several times in ISMS / ISO 27001 certifications.
Language: German / English
Licence: Digital template in Microsoft Office format with right of use for one company. The template may be modified as desired. No resale, no transfer or commercial use by consulting companies is permitted.
