Cases
Implementation of ISO 22301, and ISO 27001
Project Scope
ISO 27001 (ISMS):
- Information assets (data, software, hardware, networks)
- Security controls (access control, encryption, incident management)
- Risk assessment & treatment for CIA
ISO 22301 (BCMS):
- Critical business processes
- Business Impact Analysis (BIA) and recovery strategies
- Disaster recovery & incident response plans
MILESTONE
Project Started
Milestone 1
Gap Assessment & Planning
Gap Assessment & Planning
Milestone 2
Management Systems Implementation
Management Systems Implementation
Milestone 3
Review and External Audit
Review and External Audit
End of Project
Project Objective
- Achieve ISO 27001 certification to establish a robust ISMS
- Achieve ISO 22301 certification to implement a BCMS
- Ensure alignment between ISMS and BCMS
- Comply with legal, regulatory, and contractual requirements
Project Output
ISO 27001:
- Risk Assessment & Treatment Plan
- ISMS Policy & Procedures
- Statement of Applicability (SoA)
- Internal Audit & Management Review Reports
ISO 22301:
- Business Impact Analysis (BIA)
- Business Continuity Policy & Plans
- Disaster Recovery & Crisis Management Plans
- BCMS Exercise & Test Results