Week 3B - AS/NZS 27001:2015

Question 1

What International Security Standards are the Australian (AS/NZS) standards based on?

Answer 1

ISO 27K Series

Question 2

Which Australian InfoSec standard is he only standard possible to receive certification for?

Answer 2

AS/ISO 27001

Question 3

What is the main purpose of AS/NZS 27001:2015

Answer 3

It is a comprehensive approach to info security management

Question 4

What is the key difference between AS/NZS 27001 vs AS/NZS 27002

Answer 4

AS/NZS 27001 is about management - setting up and running an ISMS

AS/NZS 27002 is a code of practice - provides InfoSec goals and controls

Question 5

How many clauses does AS/NZS 27001:2015 contain?

Answer 5

10 Clauses

Question 6

Which clauses of AS/NZS 27001 must be met in order to conform to the standard?

Answer 6

Clauses 4 -10

Question 7

What is Clause 4 about?

Answer 7

Clause 4: Context of the Organisation

Question 8

What is Clause 5 about?

Answer 8

Clause 5: Leadership

Question 9

What is Clause 6 about?

Answer 9

Clause 6: Planning

Question 10

What is Clause 7 about?

Answer 10

Clause 7: Support

Question 11

What is Clause 8 about?

Answer 11

Clause 8: Operation

Question 12

What is Clause 9 about?

Answer 12

Clause 9: Performance Evaluation

Question 13

What is Clause 10 about?

Answer 13

Clause 10: Improvement