Investments on ISO 27001
Assign topic to the user
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
E faz parte da estratégia, realizar a implementação da ISO 27001, como objetivo melhor posiciona-la no mercado, além dos demais benefícios da certificação / implementação 27001. Pode me auxiliar com isso?
A empresa está na estaca 0 (zero) com relação a segurança, não possui PSI, não possui firewall em harware ou software e também não possui pessoal especializado em SI. A atividade fim dela, é fabricação de sofware.
Seria realmente uma certificação de uma empresa com (20 funcionários) em "nível 0", contaria com aquisições do tipo:
Materiais (a própria normal e livros)
Horas de consultoria
Custos da avaliação
Custos com tecnologia (firewalls)
Custos com capacitação da equipe
Porém eu não tenho noção de quantitativo e provavelmente mais itens que se façam necessários para conseguir a certificação. Além, do temo necessário.
Pode me ajudar com isso?
(I am working on a business plan that involves among a number of factors, the most important for the 27001 subject is that it is the acquisition of a small software manufacturing company.
And it is part of the strategy, to implement the implementation of ISO 27001, as the best goal to position it in the market, in addition to the other benefits of certification / implementation 27001. Can you help me with this?
The company is at stake 0 (zero) with respect to security, does not have PSI, does not have firewall in hardware or software and also does not have personnel specialized in IS. The end activity of it, is the fabrication of software.
It would really be a certification of a company with (20 employees) in "level 0", would have acquisitions of type:
Materials (own normal and books)
Consulting hours
Evaluation costs
Technology costs (firewalls)
Team empowerment costs
But I have no idea of quantitative and probably more items that are needed to achieve certification. In addition, the necessary time.
Can you help me with this?)
Answer: There are a significant number of variables to be considered when estimating an implementation cost, so without more detailed information it's not possible to precise a value. What I can tell you are some cost issues you should consider:
- Training and literature
- External assistance
- Technologies to be updated / implemented
- Employee's effort and time
- The certification process
Regarding knowledge on costs, I suggest you these articles:
- How much does ISO 27001 implementation cost? https://advisera.com/27001academy/blog/2011/02/08/how-much-does-iso-27001-implementation-cost/
- 5 ways to avoid overhead with ISO 27001 (and keep the costs down) https://advisera.com/27001academy/blog/2012/06/19/5-ways-to-avoid-overhead-with-iso-27001-and-keep-the-costs-down/
- How to Budget an ISO 27001 Implementation Project https://info.advisera.com/27001academy/free-download/how-to-budget-an-iso-27001-implementation-project
Comment as guest or Sign in
Mar 07, 2018