Certification for a specific issue
Assign topic to the user
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
Trabalho com governança de TI, mas faço parte de uma liderança de infraestrutura BD e BI. Meu líder imediato me pediu para ver certificação ISO, voltada a banco de dados.Eu não achei uma especifica para banco de dados. Seria possível reduzir o escopo para uma área de conhecimento de BD?Visto que essas certificações geralmente toda a organização ou um departamento.
(I would like to know if it is possible to certify a company in an ISO 27001 OR 20000 in a specific area or on a specific subject.
I work with IT governance, but I am part of a BD and BI infrastructure leadership. My immediate leader asked me to see ISO certification, database-driven. I did not find a specific database. Could it be possible to narrow the scope to a BD knowledge area, since such certifications generally covers the organization or a department .)
Answer: The scope of an ISO 27001 or ISO 20000 certification can be defined in terms o f processes and locations (additionally, the scope of ISO 27001 can be defined in terms of information to be protected). So, both certifications are applicable to a database, but depending on your purposes the better option may vary:
- If you want to ensure proper operation and management of the database you should look for ISO 20000 certification
- If you want to ensure the protection of the data stored and processed by the database, then you should look for ISO 27001 certification
You also can consider both certifications. ISO 27001 and ISO 20000 have similar framework that allows to integrate the common requirements, so you can take advantage of both certifications.
These articles will provide you further explanation about ISO 27001 and ISO 20000:
- What is ISO 27001? https://advisera.com/27001academy/what-is-iso-27001/
- What is ISO 20000? https://advisera.com/20000academy/what-is-iso-20000/
- How to implement ISO 27001 and ISO 20000 together https://advisera.com/27001academy/blog/2015/03/16/how-to-implement-iso-27001-and-iso-20000-together/
These materials will also help you regarding ISO 27001 and ISO 20000:
- Free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/
- How to integrate ISO 27001 and ISO 20000 [free webinar on demand] https://advisera.com/20000academy/webinar/how-to-integrate-iso-27001-and-iso-20000-free-webinar-on-demand/
Comment as guest or Sign in
Jan 17, 2018