The ISO 27001 Context of Organisation

The ISO 27001 Context of Organisation document is a fundamental documentation requirement of the ISO 27001 standard. It is used in defining, building and positioning the information security management system. The document is a record of internal issues, external issues and interested parties as they relate to the information security management system. It shows that we have considered and addressed the internal risk and external risks that could directly impact our management system and its effectiveness. In addition is shows that we have identified who our interested parties and what their requirements are on the information security management system. By doing this we are in the best position we can be to have an operate and effective information security management system (ISMS).
This document is important as it allows us to align with our business objectives and strategies, make informed decisions on the information security controls we require and the level to which we require them. It also allows us to demonstrate compliance to the ISO27001:2002 Standard.

Youtube Video

ISO 27001 Context Of Organisation Contents

• Document Version Control
• Document Contents Page
• Introduction
• Internal Issues Overview
• External Issues Overview
• Internal Issues
• External Issues
• Interested Parties

Why Use an ISO 27001 Context Of Organisation Template?

This template has been designed to fully meet the requirements of the ISO27001:2002 standard and has been completed with common examples. To save you time we have already added in the common example internal issues, common example external issues and the common example interested parties as well as the requirements of those parties. The number 1 benefit of using the ISO 27001 Context of Organisation Template is that it will save you time in researching what is required, save you time identifying internal issues, external issues and interested parties and save you time working out what their requirements might be.