After deciding on riziko treatment options, the organization selects specific controls from Annex A of ISO 27001. This annex provides a catalog of one hundred fourteen (114) control objectives & controls grouped into fourteen (14) categories, covering everything from access control to incident management.Make sure you visit us across the country at