Expert Advice Community

Guest

How to start with ISO27001 implementation in a company

  Quote
Guest
Guest user Created:   Sep 11, 2020 Last commented:   Sep 11, 2020

How to start with ISO27001 implementation in a company

How to start with ISO27001 implementation in a company which does outsourcing activities for business process, legal process, HR and IT for someone who is new but has a 10 years background in system admin, network and telecom + another 2.5 years in IT Security

0 0

Assign topic to the user

Assign

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Sep 11, 2020

First is impoortant to note that the implementation process is the same for any type of company.

After getting support for your project (through an approval of the ISMS project plan) and approval of the Procedure for Document and Record Control, you should consider these steps:
1) defining ISMS basic framework (e.g., scope, objectives, organizational structure), by understanding the organizational context and requirements of interested parties;
2) development of risk assessment and treatment methodology;
3) perform risk assessment and define the risk treatment plan;
4) controls implementation (e.g., policies and procedures documentation, acquisitions, etc.);
5) people training and awareness;
6) controls operation;
7) performance monitoring and measurement;
8) perform internal audit;
9) perform management critical review; and
10) address nonconformities, corrective actions, and opportunities for improvement.

This article will provide you a further explanation about ISMS implementation:
- ISO 27001 implementation checklist https://advisera.com/27001academy/01academy/emy/ademy/my/knowledgebase/iso-27001-implementation-checklist/

To see how documents compliant with ISO 27001 looks like, I suggest you take a look at the free demo of our ISO 27001 documentation toolkit at this link: https://advisera.com/27001academy/01academy/emy/ademy/my/iso-27001-documentation-toolkit/

These materials will also help you regarding ISO 27001 implementation:
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/d-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
- ISO 27001:2013 Foundations Course https://training.advisera.com/se/iso-14001-internal-auditor-course/o-27001-foundations-course/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Sep 11, 2020

Sep 11, 2020

Suggested Topics