Fabulous completion of Part 2 of ISO 27001 implementation by Mr. Rahul Kokcha and Prabh highlighting the importance of Internal Audit/ KPI/ Objectives of ISMS, then going on for evaluation of implementation of ISO 27001 and going on for continuous improvement. Thanks for highlighting the fact that ISO 27001 certification can be done by any company or Organization with whatever be the strength based on the cost benefit analysis. Great to focus on the fact that the proof of implementation is the Statement of Applicability as per Annex A and not all the controls needs to be implemented based on the specific requirement (however, some controls are mandatory as suggested by Mr. Rahul). Thanks to you both, this has been a rich discussion helping everyone to know the implementation of ISO 27001 on a high level.
Your insights during our discussion were not only enlightening but also incredibly valuable for everyone involved. Your deep understanding and practical knowledge of security matters provided clarity and guidance, enriching our understanding of ISO27001 and its implementation. And willingness to share your knowledge speaks volumes about your commitment to fostering a community of learning and growth. It's evident that your passion for security extends beyond your professional responsibilities, I am truly grateful for the dedication you both exhibit. The information you provided will undoubtedly serve as a solid foundation for our future endeavors in strengthening our security measures. Your expertise has empowered us to navigate the complexities of ISO27001 with confidence and precision. Once again, thank you, Rahul and Prabh, for your invaluable contribution. Your generosity in sharing your time and expertise is deeply appreciated. - Devender Bhardwaj
A single policy document has its own challenges in a complex organization for changes would be too frequent and must be approved by Change Approval Board. Using same example, 5:47 to 5:57, it becomes difficult when changes have to be implemented. A multiple document approach that aligns with the requirements of the policy could be more easier from a maintainability perspective. What do you think?
Thank you!! Please clear one doubt- is Gap assessment done first or risk assessment done first? do not we need to do risk assessment first to know our current state and then the gap assessment i.e. difference between current state and the desired state.
Hi Pavan here, student and want to know as a fresher what should be done such as skills, projects to showcase the recruiter that I have a proper knowledge of ISO 27001. And for better understanding what should I do?
Fabulous completion of Part 2 of ISO 27001 implementation by Mr. Rahul Kokcha and Prabh highlighting the importance of Internal Audit/ KPI/ Objectives of ISMS, then going on for evaluation of implementation of ISO 27001 and going on for continuous improvement. Thanks for highlighting the fact that ISO 27001 certification can be done by any company or Organization with whatever be the strength based on the cost benefit analysis. Great to focus on the fact that the proof of implementation is the Statement of Applicability as per Annex A and not all the controls needs to be implemented based on the specific requirement (however, some controls are mandatory as suggested by Mr. Rahul). Thanks to you both, this has been a rich discussion helping everyone to know the implementation of ISO 27001 on a high level.
Thank you Prabh and Sir Rahul🙏🏾 This has really simplified ISO 27000 for complete beginners.
This was pure Gold. Thank you so much, highly indebted
Fabulous session.. thanks a lot!
Thanks for taking us through the practical approach.
Your insights during our discussion were not only enlightening but also incredibly valuable for everyone involved. Your deep understanding and practical knowledge of security matters provided clarity and guidance, enriching our understanding of ISO27001 and its implementation.
And willingness to share your knowledge speaks volumes about your commitment to fostering a community of learning and growth. It's evident that your passion for security extends beyond your professional responsibilities, I am truly grateful for the dedication you both exhibit.
The information you provided will undoubtedly serve as a solid foundation for our future endeavors in strengthening our security measures. Your expertise has empowered us to navigate the complexities of ISO27001 with confidence and precision.
Once again, thank you, Rahul and Prabh, for your invaluable contribution. Your generosity in sharing your time and expertise is deeply appreciated.
- Devender Bhardwaj
I have a one question what is iso27001 and how to conduct audit and what is the process
A single policy document has its own challenges in a complex organization for changes would be too frequent and must be approved by Change Approval Board. Using same example, 5:47 to 5:57, it becomes difficult when changes have to be implemented. A multiple document approach that aligns with the requirements of the policy could be more easier from a maintainability perspective. What do you think?
Fabulous session
This was wonderful. Thank you!!
such a Great ISO 27001session. Thank you very much.
Thank you!!
Please clear one doubt- is Gap assessment done first or risk assessment done first? do not we need to do risk assessment first to know our current state and then the gap assessment i.e. difference between current state and the desired state.
Can you do a training from the ground up on SOX compliance?
Security governance and a complete GRC career guidelines would be the great learning from Rahul sir.
Kudos to you.. most of my doubt is clear.
As i am just doing the implementation of Isms in my org i appreciate for sharing this precise high level flow which is quite helpfull🎉
Hi Pavan here, student and want to know as a fresher what should be done such as skills, projects to showcase the recruiter that I have a proper knowledge of ISO 27001. And for better understanding what should I do?
Thanks lot. I am working on setting up ISO 27k for my organisation. Can we pls have another 1 or 2 sessions in more detailed as Sir was mentioning.
New subscriber who come from Linkedin....great job what you do🙏
Hi prabh, put more interview QAs on auditing and risk management practice also, thank you very much ❤
thanks a lot, really nice topic , Pls describe how to prepare strategy & policy for any implemetation
Data privacy