Declaration of applicability
Information security, cybersecurity, and protection of privacy data - ISO/IEC 27001 : 2022
Article REF: H5070 V3
Declaration of applicability
Information security, cybersecurity, and protection of privacy data - ISO/IEC 27001 : 2022

Author : Claude PINET

Publication date: July 10, 2024 | Lire en français

Logo Techniques de l'Ingenieur You do not have access to this resource.
Request your free trial access! Free trial

Already subscribed?

4. Declaration of applicability

4.1 Normative appendix

Many standards include annexes. However, NF ISO/IEC 27001 is unique in that its Annex A is normative. This means that, to obtain the certificate, the candidate organization must meet all its requirements.

The documented response to the requirements of Appendix A must be formalized in the Statement of Applicability (SoA). This document describes the security objectives and appropriate measures applicable to the organization's information security management system.

SCROLL TO TOP

4.2 Objectives...

You do not have access to this resource.
Logo Techniques de l'Ingenieur

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed?

Ongoing reading
Declaration of applicability

Article included in this offer

"Software technologies and System architectures"

( 227 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details
Contact our team FAQ