Guidelines on Part-IS proportional implementation for CAs
The Part-IS Implementation Task Force has published new Guidelines for Competent Authorities for the conduct of oversight activities on organisations that can be considered to be simple from a Part-IS perspective.
The guidance supports competent authorities in applying a proportionate oversight approach under Part-IS, taking into account the specific characteristics of such organisations.
The main message is that “simple” does not necessarily mean small. The assessment should also consider the organisation’s safety relevance, organisational structure, and ICT/data complexity.
Although primarily addressed to competent authorities, the guidance may also help organisations better understand how proportionality can be considered in the context of Part-IS oversight.
The material supports a proportionate approach to implementation and oversight by clarifying key considerations such as organisational structure, ISMS scope, risk management, incident management, reporting, record keeping and compliance monitoring.
You may find the guidelines under the related content below.
Please log in or sign up to comment.