I disagree but if you're thinking that It might be helpful you might have a more unique goal and established a timescale on it. Probably this could be an aim that is one thing about range of incidents to get lower than X by December 2024. Roles and Tasks (segment three) The segment on roles and tasks just isn't required for ISO27001 but I recommend