Man-days needed for ISMS implementation
Assign topic to the user
Answer:
For a company of up to 200 employees you could expect ca 20% of the total work time for the person who is running such a project (usually CISO) - i.e. one day per week for coordinating ISO 27001 implementation.
Other people that will need to be involved:
- Sponsor of the project (e.g. the CEO) - ca 4 hours per month - for approving main documents and resolving conflicts
- Head of IT department - ca 2 man/days per month - for reviewing the documents and coordinating the IT side of the implementation
- Heads of the departments - ca 5 man/days during the whole implementation - for participating in the risk assessment, reviewing the documents and coordinating the implementation in their departments
For the duration of the implementation, use this Calculator: https://advisera.com/27001academy/free-tools/free-calculator-duration-of-iso-27001-iso-22301-implementation/
These mat erials will also help you regarding ISO 27001 project:
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your
Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
- Free online training ISO 27001 Foundations Course
https://advisera.com/training/iso-27001-foundations-course/
Comment as guest or Sign in
Dec 26, 2018