Cases
Implementation of ISO 20000, ISO 22301, and ISO 27001
Project Scope
Establish, implement, maintain, and continually improve an Integrated Management System (IMS) covering:
- IT SMS (ISO/IEC 20000), BCMS (ISO 22301), and ISMS (ISO/IEC 27001)
- Develop all required policies, procedures, processes, records, and registers
- Define the ISMS scope, develop the Statement of Applicability (SoA)
- Integrate requirements into a unified governance, documentation, and control framework
- Conduct internal audits, management reviews, and manage corrective actions
- Prepare combined audit reports and consolidated corrective action plans
- Develop and deliver training and awareness materials for relevant staff
MILESTONE
Project Started
Milestone 1
Gap Assessment & Planning
Gap Assessment & Planning
Milestone 2
Management Systems Implementation
Management Systems Implementation
Milestone 3
Review and External Audit
Review and External Audit
End of Project
Project Objective
- Core ITSM Processes Implementation
- Service Delivery, Incident & Problem Management
- Change & Configuration Management
- ISO 22301 (BCMS): BIA & Risk Assessment, BCMS Framework
- ISMS SOA, scope, policies, and ISMS controls
Project Output
ISO 20000:
- ITSM Policy & Process Documentation
- Service Catalog, SLAs, and OLAs
ISO 22301:
- BIA Report, BCP & ITDRP, Risk Treatment Plans
ISMS:
- SOA, scope, policies, and ISMS controls