Conflicting management systems
Assign topic to the user
Can there be a single choice between ISO22301 and 27001 for technology companies? Or which one takes the priority and should be implemented first?
Answer: The choice between ISO 22301 or ISO 27001, or which one to implement first will depend on organization's context and its objectives, so there is no definitive answer for this question.
If your scope is just supporting your business processes, you might get more by focusing on implementing ISO 22301.
If your scope handles just digital products, and information technology processes are the core of your organization, the implementing of ISO 27001 would be a better choice.
Regarding the concepts conflicts, the first thing would be for the spons ors to try to reach an agreement about a common version that would satisfy both sets of requirements. If this is not possible, then the situation should be taken to top management for evaluation what should be the best decision (e.g., to decide for a single concept to be used or accept the additional administrative effort that such difference will bring). But considering the current versions of ISO management standards releases after 2012, the integration of concepts shouldn't be hard to achieve.
This article will provide you further explanation about ISO 22301 and ISO 27001 implementation:
- What to implement first: ISO 22301 or ISO 27001? https://advisera.com/27001academy/blog/2017/04/03/what-to-implement-first-iso-22301-or-iso-27001/
- How to use ISO 22301 for the implementation of business continuity in ISO 27001 https://advisera.com/27001academy/blog/2015/06/15/how-to-use-iso-22301-for-the-implementation-of-business-continuity-in-iso-27001/
These materials will also help you regarding ISO 22301 and ISO 27001 implementation:
- Book Becoming Resilient: The Definitive Guide to ISO 22301 Implementation https://advisera.com/books/becoming-resilient-the-definitive-guide-to-iso-22301-implementation/
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
- ISO 27001 & ISO 22301: Why is it better to implement them together? [free webinar on demand] https://advisera.com/27001academy/webinar/iso-27001iso-22301-certification-process-free-webinar-demand/
- Free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/
Comment as guest or Sign in
Sep 04, 2017