Guest user Created: Aug 12, 2021 Last commented: Aug 12, 2021

Method or methodology to implement ISO 27001 requirements

As I understand, ISO 27001 is a standard, a set of requirements to be met by a company to be compliant with. But ISO does not provide a method or a methodology to implement the requirements. Is that true ? If yes, could you please name a widely accepted method or methodology to do so.

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Aug 12, 2021

ISO does not prescribe a method to implement its management standards so organizations can choose the method that better suits their needs.

Widely accepted methods for ISO 27001 implementation are project management approaches based on traditional and agile frameworks like PMBoK and Scrum, but they need to be adjusted for the specific needs of an ISMS implementation project.

As a suggestion for an approach already adjusted for implementing an ISO 27001 ISMS, I suggest you take a look at the free demo of our ISO 27001 Toolkit at this link: https://advisera.com/27001academy/iso-27001-documentation-toolkit/

With this toolkit, we have thousands of companies that have successfully implemented 27001.

For further information, see:

ISO 27001 project – How to make it work https://advisera.com/27001academy/blog/2013/04/22/iso-27001-project-how-to-make-it-work/
How to use Scrum for the ISO 27001 implementation project https://advisera.com/27001academy/blog/2017/03/27/how-to-use-scrum-for-the-iso-27001-implementation-project/

To see an example of a project framework for ISO 27001 implementation, please access this free downloadable material:

Project checklist for ISO 27001 implementation (MS Word) https://info.advisera.com/27001academy/free-download/project-checklist-for-iso-27001-implementation

Quote

0 1

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Aug 12, 2021

Expert Advice Community