Expert Advice Community

Home / ISO 9001 / Incorporating ISMS scope and policy into QMS

Guest

Incorporating ISMS scope and policy into QMS

ISO 9001
  Quote
Guest
Guest user Created:   Jul 08, 2016 Last commented:   Jul 08, 2016

Incorporating ISMS scope and policy into QMS

ISO 9001
If there already is a quality policy within a quality manual at a 9001 certified company, would it best practice be to incorporate the information security policy and scope into the quality manual?
0 1

Assign topic to the user

ISO 9001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 9001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.
Expert
Strahinja Stojanovic Jul 08, 2016

Answer:

Yes, the best way to maintain both quality and information security management systems is to create integrated management system that will fulfill requirements of both ISO 9001 and ISO 27001. Besides information security policy and the scope there are a lot of common requirements of both standards. There are clauses 7, 9 and 10 of ISO 27001:2013 and ISO 9001:2015 with practically the same requirements so they can be addressed at the same time.

For more information, see: Using ISO 9001 for implementing ISO 27001 https://advisera.com/27001academy/blog/2010/03/08/using-iso-9001-for-implementing-iso-27001/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jul 08, 2016

Jul 08, 2016

Suggested Topics
Guest user Created:   Oct 18, 2023 ISO 9001
Replies: 1
0 0

Is it mandatory to use a consultant for QMS and should we request a certificate from the auditor?
Guest user Created:   Apr 21, 2023 ISO 9001
Replies: 1
0 0

Change Management and QMS
Mark M. Created:   Jan 09, 2023 ISO 9001
Replies: 1
0 0

ISO 9001:2015 Scope