ISO27001& ISO22301, GDPR and PCI-DSS
1 - Is it possible to have all in one? It is for my client who want to implement them since he has client who request to implement them all.
2 - How much will cost for implementation with documents
3 - is it possible to do it via Zoom or Webex for implementation?
Assign topic to the user
1 - Is it possible to have all in one? It is for my client who want to implement them since he has client who request to implement them all.
lease note that ISO 27001 and ISO 22301 define requirements for management systems, while GDPR is a regulation and PCI-DSS is an industry best practice.
Considering that, it is possible to implement ISO 27001 and ISO 22301 together and both can support the implementation of parts of both GDPR and PCI-DSS.
For further information, see:
- What to implement first: ISO 22301 or ISO 27001? https://advisera.com/27001academy/blog/2017/04/03/what-to-implement-first-iso-22301-or-iso-27001/
- How to implement integrated management systems https://advisera.com/blog/2015/10/05/how-to-implement-integrated-management-systems/
- ISO 27001 & ISO 22301: Why is it better to implement them together? [free webinar on demand] https://advisera.com/27001academy/webinar/iso-27001-iso-22301-better-implement-together-free-webinar-on-demand/
- PCI-DSS vs. ISO 27001 Part 1 – Similarities and Differences https://advisera.com/27001academy/knowledgebase/pci-dss/
- PCI-DSS vs. ISO 27001 Part 2 – Implementation and Certification https://advisera.com/27001academy/knowledgebase/pci-dss/
- Does ISO 27001 implementation satisfy EU GDPR requirements? https://advisera.com/27001academy/blog/2016/10/17/does-iso-27001-implementation-satisfy-eu-gdpr-requirements/
- How to integrate GDPR with ISO 27001 [free webinar] https://advisera.com/27001academy/webinar/how-to-integrate-gdpr-with-iso-27001-free-webinar-on-demand/
2 - How much will cost for implementation with documents
There are a significant number of variables to be considered when estimating an implementation cost, so without more detailed information, it's not possible to precise a value. What I can tell you are some cost issues you should consider:
- Training and literature
- External assistance
- Technologies to be updated/implemented
- Employee's effort and time
- The certification process
These articles can provide you more information:
- How much does ISO 27001 implementation cost? https://advisera.com/27001academy/blog/2011/02/08/how-much-does-iso-27001-implementation-cost/
- 5 ways to avoid overhead with ISO 27001 (and keep the costs down) https://advisera.com/27001academy/blog/2012/06/19/5-ways-to-avoid-overhead-with-iso-27001-and-keep-the-costs-down/
- How to Budget an ISO 27001 Implementation Project https://info.advisera.com/27001academy/free-download/how-to-budget-an-iso-27001-implementation-project/
3 - is it possible to do it via Zoom or Webex for implementation?
I'm assuming you mean if it is possible to manage an implementation project through these tools.
Considering that, it is possible to remotely support a local team to implement such a project. You only need to have the proper set of tools to keep communication flowing and control documents and tasks.
Thank you for your rely. If I understand the best is to teach them the new rocedures and policies then later on prepare for certify the company.
Comment as guest or Sign in
Aug 14, 2020