Scribd
Upload
273 views2 pages

ISMS Project Deliverables

The document outlines the project deliverables across 5 phases of an ISMS project aiming for ISO 27001 certification. Phase 1 includes documents defining the ISMS scope and policy. Phase 2 focuses on asset profiling, risk management and security reviews. Phase 3 covers the ISMS design. Phase 4 is for rollout and effectiveness measurement. Phase 5 is for certification and ongoing support services including audits and corrective action plans. Additional deliverables may be required based on the company's needs.

Uploaded by

Boris
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
273 views2 pages

ISMS Project Deliverables

The document outlines the project deliverables across 5 phases of an ISMS project aiming for ISO 27001 certification. Phase 1 includes documents defining the ISMS scope and policy. Phase 2 focuses on asset profiling, risk management and security reviews. Phase 3 covers the ISMS design. Phase 4 is for rollout and effectiveness measurement. Phase 5 is for certification and ongoing support services including audits and corrective action plans. Additional deliverables may be required based on the company's needs.

Uploaded by

Boris
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

ISMS Project Deliverables

e Project Deliverables
Phase 1
ISMS Scope Definition and CSA
• Project Kick off Presentation
• Project Plan
• Project Charter
• ISMS Scope document
• ISMS Policy
• ISMS Organization Chart
• CSA Report

Phase 2
Asset Profiling and risk Management
• Asset Register
• Consolidated VA/PT report
• Physical and Environmental Security Review Report
• Gap Analysis Report
• Risk Management Methodology
• Risk Register

Phase 3
ISMS Design
• Statement Of Applicability
• Information Security Policies and procedures
• Business Continuity Framework
• Business continuity strategy plan
• Security Architecture Review Report
• Implementation Roadmap
• Business Impact Analysis reports
• Threat Assessment document
• IT Continuity plans and Templates
• Disaster Recovery plan template
Phase 4
Rollout and Effectiveness Measurement
• Information security objectives
• Competence document
• Effectiveness Framework (Metrics / KPIs)
• ISO 27001 Awareness material
• ISO 27001 Training material

Phase 5
Certification and Support Services
• Audit Program
• Audit schedule / rescheduling
• Audit reports
• Audit finding track sheets
• Certification Audit report
• CAPA

Deliverables shall not be limited to the above, there shall be other deliverables which may be
required for the company to achieve ISO 27001:2013 certification and our team shall review/
develop the same as required

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy