Among others, which of the following factors should an organisation consider when establishing, Implementing, maintaining, and continually improving asset management?
When establishing, implementing, maintaining, and continually improving asset management, an organization must consider its operating context. The operating context includes the internal and external environment in which the organization functions, encompassing factors such as regulatory requirements, business objectives, and threat landscape. Understanding the operating context ensures that asset management practices are aligned with the organization's specific needs and conditions.
ISO/IEC 27001:2013 - Emphasizes the importance of considering the organization's context in the implementation and maintenance of the ISMS.
NIST SP 800-53 - Recommends that organizations take into account their operating context when developing and implementing security controls, including asset management practices.
Currently there are no comments in this discussion, be the first to comment!