Procedure for Specialist Information Security Advice
Details
| Date | Version | Status | Information Classification | Document Template ID | Document No |
|---|---|---|---|---|---|
| 19-02-2020 | 1.0 | Approved | Internal | AMS DOC |
Revision History
| Date | Version | Description | Author | Reviewed by | Approved by | Approved date |
|---|---|---|---|---|---|---|
| 19-02-2020 | 1.0 | Initial Version | Usha | Shaila | Suresh Kumar | 19-02-2020 |
Acronym Used
| Acronym | Expanded Form |
|---|---|
| AMF | Antares Management Forum |
| ISMS | Information Security Management System |
| CEO | Chief Executive Officer |
Introduction
The quality of assessment of risks and recommendations to mitigate the same will determine the strength of the ISMS going forward. The purpose of this procedure is to provide the steps to be followed for seeking expert advice from external consultants for addressing specific information security requirements.
ISO27001 Reference
- A.6.1.4 Contact with special interest groups
Scope
This procedure is applicable when there is a need for information security advice, and in-house expertise is not available or in-house expertise, though available, but the required resources may not be utilized due to resource constraints.
Key Practices & Responsibility
The key practices and responsibilities are as follows:
| Srl. | Key Practice | Responsibility |
|---|---|---|
| Seeking Information Security Advice | AMF |
Key Practice Details
Seeking Information Security Advice
The process flow depicted below will be adopted for consulting information security experts.
{width="1.8229166666666667in"
height="0.5833333333333334in"}
References
| Srl. | Document/Section Name |
| Procedure for Incident Management |