+ Reply to Thread
Posts 1 to 4 of 4
  1. #1

    Nervous Newbie


    Join Date
    Jul 2017
    Posts
    2
    Thanks (Given)
    0
    Thanks (Received)
    0
    Likes (Given)
    0
    Likes (Received)
    0

    Default IT Security Policy

    I am starting out contracting under a Ltd company and I am the only employee. I am filling in a Due Diligence form and they ask if I do not hold ISO27001 Information Security Certification then do I have a documented Information Security Policy, has anyone else had this question and how have they dealt with it? I am providing project management services and I guess as a contractor I will have to use my own laptop.

  2. #2

    More time posting than coding

    yetanotherbob's Avatar
    Join Date
    Sep 2010
    Posts
    220
    Thanks (Given)
    16
    Thanks (Received)
    5
    Likes (Given)
    81
    Likes (Received)
    25

    Default

    You can review the Cyber Essentials questionnaire and see how much you are aware of/conform to its requirements https://www.cyberaware.gov.uk/cyberessentials
    This might serve as a baseline Information security policy for your business and if needed, you can get your business certified too.
    (sufficient for a small business I think, but not quite ISO27001)

  3. #3

    Nervous Newbie


    Join Date
    Jul 2017
    Posts
    2
    Thanks (Given)
    0
    Thanks (Received)
    0
    Likes (Given)
    0
    Likes (Received)
    0

    Default

    Thanks very much

  4. #4

    Still gathering requirements...


    Join Date
    Oct 2014
    Posts
    38
    Thanks (Given)
    0
    Thanks (Received)
    2
    Likes (Given)
    1
    Likes (Received)
    4

    Default

    I guess the jobsworth have put you on their portfolio to undergo the 3rd party due diligence assurance which is aligned to ISO27001. Call them up and let them know you are a one man company and not in scope for the process.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts

Content Relevant URLs by vBSEO 3.6.0 ©2011, Crawlability, Inc.