Sizing an project team

Answer: First it is important to note that there can be two kinds of personnel involved in a project:
- people regularly involved in all project's activities (e.g., project manager, information security expert, etc.)
- people involved in specific project's activities (document review and risk identification for specific departments/process, etc.)

Considering that, for a project involving 600 people, the project team would vary from 4 to 6 people, and the extra people related to specific project's activities will depend on the organizational structure (e.g., one or two by department/process).

Please note that people involved in specific project's activities will be only occasionally needed on the project, while project members will be probably involved at least once a week.

This article will provide you further explanation about responsibilities in a project:
- RACI matrix for ISO 27001 implementation project https://advisera.com/27001academy/blog/2018/11/05/raci-matrix-for-iso-27001-implementation-project/

This material will also help you regarding responsibilities in a project:
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/