This YouTube short explains segregation of duties (ISO 27001 Annex A 5.3) in an easy-to-understand way.
*What is ISO 27001 Annex A 5.3 Segregation of Duties?*
ISO 27001 Annex A 5.3 Segregation of Duties is an ISO 27001 controls that requires you to identify conflict of interest in roles and environment and eliminate them to ensure segregation of duty.
*How to implement ISO 27001 Annex A 5.3 Segregation of Duties*
To implement ISO 27001 Annex A 5.3 Segregation of Duties you need to identify and document the information security roles that you need. Then you need to define the responsibilities for those roles. Finally you assess the roles and responsibilities to identify and conflicts and using risk management you address those conflicts.
*Do It Yourself ISO 27001*
► Do It Yourself ISO 27001 with the Ultimate ISO 27001 Toolkit: [ Ссылка ]
Ещё видео!