![]() ![]() People are also considered assets because they also have lots of information in their heads, which is very often not available in other forms.Infrastructure – e.g., offices, electricity, air conditioning – because those assets can cause lack of availability of information.Information – not only in electronic media (databases, files in PDF, Word, Excel, and other formats), but also in paper and other forms.Software – not only the purchased software, but also freeware.Hardware – e.g., laptops, servers, printers, but also mobile phones or USB memory sticks.Since ISO 27001 focuses on preservation of confidentiality, integrity and availability of information, this means that assets can be: A.5.10 – Acceptable use of information and other associated assetsįirst, let’s clarify what assets means in the context of ISO 27001 – strangely enough, neither the 2022 revision of ISO/IEC 27001, nor the 2018 revision of ISO/IEC 27000, gives a definition of assets, but the 2005 revision of ISO/IEC 27001 defines an asset as “anything that has value to the organization.”.A.5.9 – Inventory of information and other associated assets. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |