We use cookies, just to track visits to our website, we store no personal details.
Learn More
Accept
Essential Medicines & Vaccines
Admin Home
User Management
My Profile
Regional Users
Countrywide Users
Setup
Organisations
Locations
Manufacturers
Health Facilities
Therapeutic Areas
Medicine Class
Generic Names
Dosage Strength
Dosage Form
Package Size
Funding Source
Regional Dashboards
Health Facilities
Registered Premises
Local Manufacturers
Registered Products
Pharmacovigilance
Good Manufacturing Practices
Quality Control Labs
Regional Data
Registered Premises
Local Manufacturers
Registered Products
Good Manufacturing Practices
Quality Control Labs
Product Stocks
Country Profile
Stock Summary
Stock Status
Stock Pipeline
Inventory Control
Stockout Trend
Shipment Reports
Content Manager
News
Upcoming Event
Alerts
Photo Gallery
Video Gallery
Notifications
Document Manager
Guidelines & Manuals
SOPs & Templates
Expression of Interests
Publication
Library
Feedbacks
Profile
Change Password
Messages
Logout
Lang
English
French
Portuguese
Back to List
Edit Guideline or Manual
Title
Author
Category
SelectSelect
Medical Product Dossier Evaluation and Registration
Good Manufacturing Practices and Inspections
Clinical Trials, Pharmacovigilance and Medicines Safety
Quality Control Laboratories
Quality Management Systems
Information Management Systems
Policy, Legislation and Regulation
Description
This document provides guidelines for information security risk management in an organization. However, this document does not provide any specific method for information security risk management. It is up to the organization to define their approach to risk management, depending for example on the scope of an information security management system (ISMS), context of risk management, or industry sector. A number of existing methodologies can be used under the framework described in this document to implement the requirements of an ISMS. This document is based on the asset, threat and vulnerability risk identification method that is no longer There are some other approaches that can be used
Abstract
This document provides guidelines for information security risk management. This document supports the general concepts specified in ISO/IEC 27001 and is designed to assist the satisfactory implementation of information security based on a risk management approach. Knowledge of the concepts, models, processes and terminologies described in ISO/IEC 27001 and ISO/IEC 27002 is important for a complete understanding of this document. This document is applicable to all types of organizations (e.g. commercial enterprises, government agencies, non-profit organizations) which intend to manage risks that can compromise the organization’s information security.
Document Status
Select
Active
Inactive
Archived
Document Type
Select
Guideline
Manual
Choose file
