5. ISMS update and improvement" phase

Improvement (clause 10.1)

Improvement records are included in Corrective Action Forms (CAFs). However, it is much better to include such records in an application that is already used by the organization's Help Desk, because corrective actions are nothing more than to-do lists with clearly defined responsibilities, tasks and deadlines. The terms "preventive action" and "corrective action" have disappeared in the 2013 version. These actions still exist, even if they are not defined. Preventive actions: eliminate the causes of a non-conformity, whether or not it has already occurred. Corrective actions: limit the effects of non-conformities.

Guiding principles for improvement

The value

Customer requirements are fulfilled by the service...

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

Already subscribed? Log in!

The Ultimate Scientific and Technical Reference

A Comprehensive Knowledge Base, with over 1,200 authors and 100 scientific advisors

+ More than 10,000 articles and 1,000 how-to sheets, over 800 new or updated articles every year

From design to prototyping, right through to industrialization, the reference for securing the development of your industrial projects

This article is included in

Environment

This offer includes:

Knowledge Base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

Practical Path

Operational and didactic, to guarantee the acquisition of transversal skills

Doc & Quiz

Interactive articles with quizzes, for constructive reading

Ongoing reading
ISMS update and improvement" phase

Bibliography

(1) - BENNASAR (M.), CHAMPENOIS (A.), ARNOULD (P.) - Manager la sécurité du SI. - Dunod (2007).
(2) - BOILEAU (T.) - SO 27001, un Système de Management de la Sécurité de l'information : Exemple de mise en œuvre d'un SMSI et sa plate-forme logicielle...

Site dedicated to ISO 27001 :

Website dedicated to IT Governance:

Site dedicated to ISO 27001 certification (LSTI) :

Lignes directrices pour l'audit des systèmes de management de la qualité et/ou de management environnemental. - ISO/IEC 19011 - 2012
Quality management systems – Requirements - ISO 9001 - 2015
Environmental management systems – Requirements and guidelines for use. - ISO 14001 - 2015
Conformity assessment – Requirements for bodies providing audit and certification of management systems – Part 1:...