About
Close

Request a demo

Find out today the difference that Hicomply’s unique solution can make to your business.

Close

Thank you for your request

Success

In the meantime, connect with Hicomply for insights on authentication and fraud prevention

Back to Resource Hub

ISO 27001 Clause 8.2: Information Security Risk Assessment

Organisations must conduct these information security risk assessments as determined in clause 6.1.2 at planned intervals or when any significant change is proposed in the ISMS. The information security risk assessment is done to assess threats and vulnerabilities to the organisation. This step helps the organisation to factually assess the organisation’s situation. and treat the risks optimally. The organisation must keep these information security risk assessment reports in a documented form.

More Resource Hub

ISO27001
SOC 2 Type 1 vs SOC 2 Type 2
ISO27001
SOC 2 Compliance Checklist (2022)
ISO27001
SOC 2 Report Types