We all have been in this situation before, been eager and inquisitive to know how far have we reached on our implementation…are we ready to be audited by the auditors…??? Are we comfortable to ask the auditors to take a stroll through our organization…???
Now here is a spreadsheet that will help you understand your compliance level right from the beginning to the end of your implementation process. This document has three sheets out of which two shows you the status of implementation based on each control objective and each domain.
All you need to do is to ask yourself / team / organization the question that is posted against each control and put in your answers in the column called “Findings”. Once this is done, you will be able to determine the level of implementation. Put in the percentage of completion in the “Status (%)” column against each control.
The value in the “Status (%)” will be in the range of 0 -100 and you can mention NA or any other value to denote that a particular control is not applicable. Kindly note that if there is any control that is not applicable to your organization, then your cumulative results on the other two sheets will show either not completed or partial. To avoid such situation, mention Not Applicable in your findings and put in the value 100 in the status field. This will ensure that your report is accurate.
By going to the other two sheets you will be able to understand the level of implementation. This is also useful when you want to project to the management on your progress of implementation.
The graphical representation sheet will give you the graphical view of your status, which can be incorporated into your management presentation.
Download the checklist from here: ISO 27001 Compliance Checklist
Now here is a spreadsheet that will help you understand your compliance level right from the beginning to the end of your implementation process. This document has three sheets out of which two shows you the status of implementation based on each control objective and each domain.
All you need to do is to ask yourself / team / organization the question that is posted against each control and put in your answers in the column called “Findings”. Once this is done, you will be able to determine the level of implementation. Put in the percentage of completion in the “Status (%)” column against each control.
The value in the “Status (%)” will be in the range of 0 -100 and you can mention NA or any other value to denote that a particular control is not applicable. Kindly note that if there is any control that is not applicable to your organization, then your cumulative results on the other two sheets will show either not completed or partial. To avoid such situation, mention Not Applicable in your findings and put in the value 100 in the status field. This will ensure that your report is accurate.
By going to the other two sheets you will be able to understand the level of implementation. This is also useful when you want to project to the management on your progress of implementation.
The graphical representation sheet will give you the graphical view of your status, which can be incorporated into your management presentation.
Download the checklist from here: ISO 27001 Compliance Checklist
No hay comentarios:
Publicar un comentario