Cuales son los factores criticos de exito para la implementacion de la Norma?
Segun la experiencia cuanto es el tiempo promedio para una PYME en implementar la Norma?
Cual es la estructura que debe crearse para implementar, mantener la Norma en la empresa
Es importante trabajar un plan de manejo del cambio para que sea un exito la implementacion?
(What are the critical success factors for the implementation of the Standard?
According to experience, how long is the average time for an SME to implement the Standard?
What is the structure that must be created to implement, maintain the Standard in the company
Is it important to work on a change management plan for the implementation to be a success?)
1 - What are the critical success factors for the implementation of the Standard?
Answer: Some common main success factors to ensure ISO 27001 implementation are: - top management support - clear objectives (aligned with business objectives) - clear roles and responsibilities - trained personnel - regular performance review
2 - According to experience, how long is the average time for an SME to implement the Standard?
Answer: The time to implement ISO 27001 will depend on many variables, like the size of the organization, the complexity of the scope, the resources available, etc., but in general, for small-sized organizations (e.g. 20 to 50 employees) the implementation duration is ca 6 months.
4 - Is it important to work on a change management plan for the implementation to be a success?
Answer: Integrating information security into business processes and culture can be a big challenge, and many things can go wrong, so it is highly recommended that a change management approach be adopted, to ensure that risks related to ISO 27001 implementation are properly managed, and implementation goes forward only when authorized by the proper personnel.