Monitoring, Measurement, Analysis & Evaluation For ISO 27001 Requirement 9.1

What is covered under ISO 27001 Clause 9.1?

The ISO 27001 requires organisations to evaluate how the ISMS is performing and how effective the information security management system is.

For this you will need to:

  1. decide what needs to be monitored;
  2. agree on the methods you will use for monitoring and analysing;
  3. when you will conduct the monitoring and measuring;
  4. decide who will conduct the measurement;
  5. decide when you will analyse the results of the measurement; and
  6. who will be responsible for evaluating the results.

Ready to take action?

Discover how ISMS.online can help you achieve or improve on your ISMS objectives

 

Need ISO 27001 policies and controls for your ISMS?

ISMS.online includes practical policies and controls for your organisation to easily adopt, adapt and add to, giving you up to 77% head start with ISO 27001 documentation. 

 

 

Ready to take action?

Discover how ISMS.online can help you achieve or improve on your ISMS objectives

ISMS Online Rating: 5 out of 5
Share This