Expert Advice Community

Guest

Aligning business strategy to ISMS

  Quote
Guest
Guest user Created:   Jul 22, 2020 Last commented:   Jul 22, 2020

Aligning business strategy to ISMS

How do you align business strategy to ISMS?

0 0

Assign topic to the user

Assign

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Jul 22, 2020

In fact, the most common situation is the other way around (align ISMS to business strategy), and to do that you basically need to take business objectives and strategies into account when defining the ISMS objectives and scope.

For example, if e-commerce is an important part of the business, and the ISMS objectives and scope do not include e-commerce, then the ISMS is not aligned to the business.

Another example, if customer information is important to the business and the ISMS scope includes customer information, and there is a clear ISMS objective related to it (e.g., reduce the occurrence of a customer data breach, or comply with GDPR), then the ISMS is aligned with the business.

This article will provide you a further explanation about aligning ISMS to business strategy:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jul 22, 2020

Jul 22, 2020