Infosec glossary entry

SoA

SoA:
Statement of Applicability

Defines which of the 133 controls in annex A of the ISO 27001 nrom should be selected and how they should be applied.

[…] states what ISO 27001 controls and policies are being applied by the organisation. It benchmarks against the Annex A control set in the ISO 27001 standard
https://www.isms.online/iso-27001/iso27001-statement-applicability-simplified/

Related entries

Share 0
Tweet 0
Share 0

By jean-christoph

January 22, 2022

auditing, certification, ISMS, ISO27001, policy
Leave a Reply

Your email address will not be published. Required fields are marked

{"email":"Email address invalid","url":"Website address invalid","required":"Required field missing"}

this might interest you as well

compliance, ethics, infosec, security awareness, security culture, security policy

Unlock Effective Cybersecurity: Simplify Policies with the Clarity of the OSI Model

ethics, Psychologie, security awareness, security culture

Leveraging Psychology in Cybersecurity: Strategies for SMEs

awareness training, ethics, phishing, phishing simulations, security awareness, security culture

Ethical considerations in phishing tests: to inform employees or not?