How to implement this control:
Answer yes if your organisation has been accredited to the ISO27001:2013 standard by a relevant accreditation body. Please upload your ISO27001:2013 certificate and Statement of Scope as evidence (as one PDF file).
ISO/IEC 27001:2013 is a standard that specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of an organization.
Accreditation requires several audits to be completed by an Accreditation Body.
If you would like to contribute to this article or provide feedback, please email email@example.com. Contributors will be recognised on our contributors page.