Please answer if you have experience with this.
Let's say there are two companies.
-Company A is a holding company
-Company B is Company A's subsidiary.
Company A gets a portion of their organization Certified for ISO 27001 with exclusions explicitly stated for Company B.
Can company B utilize any of Company A's processes and policies as a part of their ISMS or do they need an entirely different set of policies and documentation to certify their ISMS?