Remedy : The SoA should consist of a list in the security controls from Annex A of ISO/IEC 27001. It must also describe the steps to implement Each individual control, together with any modifications or exclusions and references regarding policies, procedures, or documents. Respond to: The target with the ISO/IEC https://iso27001pdf04692.blogdun.com/32731040/not-known-details-about-iso-27001-vs-nist-800-171
