top of page

ISO27001, clause 4.2 "Understanding the needs and expectations of interested parties" states that the requirements of interested parties may include legal and regulatory requirements and contractual obligations.

 

The requirement is that you need to determine:

a) interested parties that are relevant to the information security management system

b) the relevant requirements of these interested parties

c) which of these requirements will be addressed through the ISMS

 

This simple register of authorities gives you visibility of the interested parties and what their interest is. Remember that this is about information security, so keep it relevent and applicable to those who are interested in the success (or failure) of your security programme.

Register of Interested Parties

£8.99Price
  • Hey, we're not going to go all 'legal' on you here... that's not our style. But this is our Intellectual Property, and we'd prefer it if you didn't go sharing this with other people who haven't spent the money and bought a copy.

    Of course, we can't really stop you... But are you that kind of person? We don't think you are. So if you want to tell people about your new found super power of ISO27001-Awesomeness, great... just don't give it away for free!

bottom of page