.png)
ISO27001 requires that you conduct reviews of your information security management system (ISMS) at regular intervals, but what should you cover?
Clause 9.3 (Management Review) provides the answer, and this template provides the structure that you should follow for each meeting.
Keep in mind that ISO27001 doesn't expext exhaustive minutes. Simply capture the key discussions and decisions within this document, and track any actions through your action trackers or ticketing systems.
This document
All our documents are designed with simplicity in mind. But in their simplicty they meet the both the standards, and your needs. Using these as a springboard towards continual improvement and see your security management system develop and thrive.
Management Review Team Meeting Agenda
Hey, we're not going to go all 'legal' on you here... that's not our style. But this is our Intellectual Property, and we'd prefer it if you didn't go sharing this with other people who haven't spent the money and bought a copy.
Of course, we can't really stop you... But are you that kind of person? We don't think you are. So if you want to tell people about your new found super power of ISO27001-Awesomeness, great... just don't give it away for free!