Odoo Community Association

Information Security Management System

Beta License: AGPL-3 OCA/management-system Translate me on Weblate Try me on Runboat

This module adds an Information Security Management System (ISMS) application within Odoo. It installs the documentation, feared events, and action tools required to deploy and manage an ISMS aligned with ISO 27001.

Before installing, define the scope of your system and perform a security analysis. Methods such as EBIOS can help with risk analysis, evaluation, and treatment.

Table of contents

Configuration

To configure your ISMS:

  • Go to Management Systems > Configuration and define asset categories and threat sources
  • Go to Management Systems > Documentation > Manuals and define primary and supporting assets, vectors, feared events, controls, and work instructions
  • Customize the Information Security Manual template under Manuals

Usage

To use your ISMS:

  • Plan audits and top management reviews
  • Manage nonconformities and improvement actions
  • Link security controls to actions from the Security Controls tab on each action

Bug Tracker

Bugs are tracked on GitHub Issues. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us to smash it by providing a detailed and welcomed feedback.

Do not contact contributors directly about support or help with technical issues.

Credits

Authors

  • Savoir-faire Linux

Maintainers

This module is maintained by the OCA.

Odoo Community Association

OCA, or the Odoo Community Association, is a nonprofit organization whose mission is to support the collaborative development of Odoo features and promote its widespread use.

Current maintainer:

max3903

This module is part of the OCA/management-system project on GitHub.

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.