ISO 27001:2013 - Risk Assessments Explained
12 February 2019
Watch a pre-recorded presentation designed to uncover some common myths regarding Risk Assessments as required by ISO 27001:2013.
The ISO process allows for interpretations to be provided by each National Member Body (BSI in the UK). These interpretations are then published to help those who implement and/or assess the standard and are the definitive responses to any areas requiring additional clarification.
The first set of these interpretations were published several months ago, however we are still finding some misunderstandings around these areas.
Interpretations are also known as ‘clarifications of intent’ They are issued so as to:
- Provide an understanding of requirements as intended during drafting
- Ensure consistency of interpretation.
- They do not modify clause requirements
For further information on ISO 14001 please click here.
You may also find some helpful blog articles here.