Starting the implemetnation
I have now opened the zip folder ISO 27001 & ISO 22301 and found two folders for ISO 27001:2019. Ask for explanation.
When I opened the first folder, I found documents that probably allow both standards to be processed in an integrated manner, is that correct?
I actually wanted to start one project after the other, and not both at the same time. I wanted to start with ISO 22301 separately, how is this possible please?
Assign topic to the user
1 - I have now opened the zip folder ISO 27001 & ISO 22301 and found two folders for ISO 27001:2019. Ask for explanation.
From your question I, understand that you are referring to folders “27001_2013_and_22301_2019_EN” and “27001_2022_and_22301_EN”, included in the toolkit zip file.
Considering that, please note that 2019 refers to the ISO 22301 standard, not ISO 27001.
There are two folders for document templates because each folder refers to different versions of the standard (2013 and 2022, respectively). There is no ISO 27001:2019.
We suggest you implement the 2022 revision of ISO 27001 unless you have a specific reason to go for the old 2013 revision.
2 - When I opened the first folder, I found documents that probably allow both standards to be processed in an integrated manner, is that correct?
Your assumption is correct. The documents were developed considering the requirements of both standards. In each document, you will find comments explaining where the requirements of each standard are applicable and which adjustments you need to make to adjust the document according to the standard you want to implement.
3 - I actually wanted to start one project after the other, and not both at the same time. I wanted to start with ISO 22301 separately, how is this possible please?
To start your implementation first with ISO 22301, you should use folders 01, 02, 03, 10, 11, 12, 13, and 14, adjusting the documents in these folders according to the comments included on them to keep references only to ISO 22301.
To start with ISO 27001, you should use all folders except folder 10.
For further information, see:
- What to implement first: ISO 22301 or ISO 27001? https://advisera.com/27001academy/blog/2017/04/03/what-to-implement-first-iso-22301-or-iso-27001/
- ISO 27001 & ISO 22301: Why Is It Better To Implement Them Together? [free webinar on demand] https://advisera.com/27001academy/webinar/iso-27001-iso-22301-better-implement-together-free-webinar-on-demand/
Comment as guest or Sign in
Nov 27, 2022