 +91.9343.79.4800 / +91.9019.45.0325 |
 Info@AdaptiveProcesses.com | ISO 9001:2008 | Shop Online |
What is ISO 27001?
ISO 27001 is the world?s most popular standard for information security. It is applicable for industries where information systems play critical role in operations or business. The aim of ISO 27001 standard is to protect information security through implementation of applicable controls. ISO 27001 is an Information Security Management System (ISMS) standard. It specifies requirements for an ISMS.
How it benefits the organization
Information security is becoming a mandatory requirement for doing business with international clients
ISO 27001:2005 is universally recognised and hence helps in getting new clients
Preparedness to plan for disasters and be operational even periods of disruption
Improved Information Security
Certification increases the Customer's confidence in Supplier's Information Security systems
Regular assessments ensure the organization continually uses, monitors and improves their processes
Employee involvement and thus commitment
Improved Information Security awareness throughout the organisation.
How to implement ISO 27001
Here is a typical implementation plan for ISO 27001
|
Task |
Primary Resp. |
Secondary Resp. |
Deliverables |
|
Project Initiation |
Client |
Adaptive |
|
|
Kick-off meeting |
Adaptive |
Client |
Kickoff Meeting PPT & MOM |
|
Project Plan Preparation |
Adaptive |
Client |
Project Plan |
|
Key person orientation training |
Adaptive |
Client |
Training Attendance Record |
|
Project Preparation |
Adaptive |
Client |
|
|
VAPT |
Client |
Adaptive |
VAPT Report |
|
Review ISMS Policies |
Adaptive |
Client |
ISMS Policy |
|
ISMS Manual |
Client |
Adaptive |
ISMS Manual |
|
Prepare Statement of Applicability |
Adaptive |
Client |
Statement of applicability |
|
Establish ISMS Objectives |
Adaptive |
Client |
ISMS Objectives |
|
APMS Tool trial installation |
Adaptive |
Client |
Installed trial Application |
|
Management Review & Approve policies and objectives |
Client |
Adaptive |
Approved Policies and objectives |
|
Asset Identification |
Client |
Adaptive |
Asset List |
|
Review ISMS Processes |
Adaptive |
Client |
ISMS Manual |
|
Awareness Training Material |
Adaptive |
Client |
Trainings |
|
Risk Identification and Treatment |
Adaptive |
Client |
RARTP |
|
Awareness Training |
Adaptive |
Client |
Trainings |
|
Milestone : Management Review - Approve Processes |
Client |
Adaptive |
Asset |
|
Implementation |
Client |
Adaptive |
|
|
Establish Business Impact Analysis |
Adaptive |
Client |
BIA Report |
|
Establish BCP Planning |
Adaptive |
Client |
BCP Plan |
|
Process Implementation |
Client |
Adaptive |
|
|
Liaison with Certification Agency |
Client |
Adaptive |
|
|
Internal Audit Cycle 1 |
Adaptive |
Client |
Audit Reports |
|
Closure of Audit Action Items |
Client |
Adaptive |
Audit Reports |
|
BCP Testing |
Adaptive |
Client |
BCP Test Results |
|
Management Review Meeting |
Client |
Adaptive |
MOM |
|
Document Review by External Auditor |
Adaptive |
Client |
|
|
Document Review by External Auditor |
Client |
Adaptive |
Document Review Findings |
|
Closure of Document Review Findings |
Client |
Adaptive |
Document Review Findings Closure |
|
Milestone : Management Review Meeting |
Client |
Adaptive |
MOM |
|
External Audit Preparations |
Client |
Adaptive |
|
|
Internal Audit Cycle 2 |
Adaptive |
Client |
Audit Reports |
|
Audit Closure Findings |
Client |
Adaptive |
|
|
Management Review Meeting |
Client |
Adaptive |
MOM |
|
Ext. Certification Audit |
Client |
Adaptive |
Audit Findings |
|
Closure of External Audit Findings |
Client |
Adaptive |
Closure of audit findings |
How Adaptive adds value
Achieving ISO 27001 is only beginning of the journey, sustaining the same over time is a bigger challenge. ISO has very high expectations on managing the ISMS properly through document control system and maintaining records and showing quantitative process improvements. ISO 27001 itself prescribes maintaining 20+ mandatory records and typically as per organizational requirements, it may go up to 40 types of records being maintained.
Our Adaptive Process Accelerator comes pre-built with 50+ standard proven ISMS processes and all required policies and guidelines which can be easily tailored by the organization. It also has 30+ data management modules such as Asset Tracker, Risk Tracker, Visitor Tracker, Material Movements Tracker, Service Tracker, Audit Plan and Track, Employee Skill Tracking, Training Tracking, Defects Tracking, Record Control Matrix, Document Control Matrix, Supplier Tracking including Supplier Evaluation etc.
All this means the organization can save huge amount of time and effort in implementing ISO 27001. Again, being an integrated product for ISO 9001 and CMMI, organization?s investment remains intact when the organization decides to implement other related standards.
GRCPerfect Modules for ISO 27001
-
Asset Master including Allocation, Movement and Component tracking
-
Automated Risk Analysis and Treatment Plan
-
Business Impact Analysis
-
Threat and Vulnerability analysis
-
Asset Service Records
-
Management Review Meetings
-
Action Item Tracking as per ISO 27001
-
Incident Tracking
-
Visitor Tracker
-
Material Movements Tracker
Our ISO 27001 credentials
-
JuriMatrix (Clutch group) Completed ISO 27001 certification
-
Tusker Legal Process Outsourcing (ISO 27001 implementation)
-
Zenith Software (ISO 27001 implementation)
-
Ness Technologies (Support for ISO 27001 surveillance audits)
-
Photon Infotech(ISMS Implementation)
-
Metlife(ISO 27001 preparedness audit)
-
CrossDomain(Business Continuity Management System development and implementation)
-
SLK Global BPO(Org wide ISMS awareness training)
-
Aricent Technologies (ISMS Internal Auditors Training)
Interested to know more Please contact: Info@AdaptiveProcesses.com
| About Us Our Guiding Values Innovation Solutions Catalogue Our Approach Awards Our People Our Advisors |
Services CMMI ISO 27001 ISO 9001 ISO 20000 HIPAA ISO 22301 QMS Reengineering Six Sigma Process Definition Services Managed Compliance Services |
Products GRCPerfect ISO 27001 Model CMMI Model ISO 9001 Model iEnable Adaptive e Learning Business Analysis ISO 9001Standard toolkits ISO 27001Standard toolkits CMMI Standard toolkits Video Based QMS | eLearning Business Analysis CMMI ISO 27001 ISO 9001 ISO 20000 HIPAA ISO 22301 | Clients | Training Training Calendar Business Analysis Bangalore Pune New Delhi Mumbai CBAP WorkShop Bangalore Pune New Delhi Mumbai ISO 27001 WorkShop Bangalore Chennai Pune Training Catalog e-learning Linkedin Feedback Training Feedback Training Clients Courses Completed | Careers | Downloads Adaptive Brochure Adaptive Corporate profile APA Factsheets Case Studies Free Presentation | Blog | Contact us |
Copyright ? 2006 - 2012, Adaptive Processes Consulting Private Limited, All Rights ReservedSite Developed & Promoted by Advent InfoSoft Pvt Ltd.