AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Data inventory definition8/28/2023 ![]() ![]() The best way to build asset inventory is to interview the head of each department, and list all the assets a department uses. If you didn’t develop your asset inventory previously, the easiest way to build it is during the initial risk assessment process (if you have chosen the asset-based risk assessment methodology), because this is when all the assets need to be identified, together with their owners. This is why ISO 27001:2022 requires asset management. See also ISO 27001 Risk Assessment, Treatment, & Management: The Complete Guide.Ģ) If the organization doesn’t know which assets it possesses, who is responsible for them, and how they must be handled, chaos would ensue. There are two reasons why managing assets is important:ġ) Assets are usually used to perform the risk assessment – although not mandatory by ISO 27001:2022, assets are usually the key element of identifying risks, together with threats and vulnerabilities. Why are assets important for information security management?
0 Comments
Read More
Leave a Reply. |