Published on March 10, 2014
Presents Webinar on: Integrated approach for implementing ISO 9001, ISO 20000 and ISO27001
www.vyomlabs.com Vyom Labs Overview Vyom Labs proudly works with the purpose of ‘Enabling organizations to Align IT with Business for maximizing value.’ Founded In: 2003 Head Quarters: Pune, India Geographic Spread: 30+ Countries End-to-end Offerings: Consulting, Products and Education Key Partnerships: BMC, Oracle, EXIN, APMG, ISACA Key Certification: ISO 20000 Vyom Labs HQ Pune, India
www.vyomlabs.com Disclaimer All other trademarks, service marks and logos used in this Webinar are the trademarks, service marks or logos of their respective owners. The views expressed in this Webinar are views of the speakers and do not necessarily reflect the views of Vyom Labs Pvt. Ltd.
www.vyomlabs.com Agenda Introduction to ISO 9001, ISO 20000 and ISO27001 Standards Why integrated approach? Approach for implementing Benefits of the integrated implementation approach Q & A
www.vyomlabs.com Introduction to ISO 9001 ISO 9001:2008 deals with the fundamentals of quality management systems, including the eight management principles upon which the family of standards is based Benefits Continuous improvement of the customer satisfaction Increased confidence in the organization Increase the competitiveness Optimization of processes in the organization and increase value added Improve company culture and unity in the organization
www.vyomlabs.com Introduction to ISO 20000 ISO 20000:2011 is a Quality standard for IT service management and an integrated process approach for IT service management (SMS) Benefits High quality and reliability of services Improving an efficiency and added value of service provided Enhance trust and the authority to clients Increase competitive advantages
www.vyomlabs.com Introduction to ISO 27001 ISO 27001 explains the purpose of an Information Security Management System (ISMS), used to manage information security risks and controls within an organization. Information Security provides assurance of Business Processes by enforcing appropriate Security Controls. Benefits Identify risks and put controls in place to manage or reduce them Increase the security of sensitive organization information (commercial information, information technology, manufacturing information, etc.). Requirements of existing legislation (personal data, accounting information, e- commerce, etc.). Compliance with the requirements of information security posed by partners Increase prestige and credibility of the organization Competitive advantages
www.vyomlabs.com Why integrated approach? Organizations are compelled to implement multiple ISO systems namely ISO 9001, ISO 20000-1 & ISO 27001 with different business drivers Need to manage multiple legal and regulatory requirements Many common elements among the three ISO standards One single integrated Management system compared to three separate management systems Positive impacts on Employees as they realize the value of ISO systems as it helps them do their job better Organizational change
www.vyomlabs.com Approach for implementation ISO 9001 ISO 20000 ISO 27001 4 to 6 Months 4 to 6 Months
www.vyomlabs.com Similarity between Standards Common elements between all three standards Management responsibility Document management Resource management Management reviews Internal audit Continuous improvement Common elements in ISO 20000 and 270001 Information security policy Risk management Information security controls Security incident management
ISO 20K & 27001 General awareness Define Vision, scope and objectives Establish project for ISO 20K & 27001 implementation Approval from senior management Scope finalization for ISO 20K &27001 Integrated pre- certification review audit Implementation with handholding Establish Management systems, policies and procedures Address the gaps found in audit Final evaluation for certification readiness External Certification Audit Initial integrated Gap analysis for ISO 20K & 27001
www.vyomlabs.com Benefits of integrated approach Lowering costs of an integrated programme Elimination of unnecessary duplication Reduction in implementation time due to integrated development of processes common to all three standards Higher caliber ISO Consultants who will save customers time & money and help integrate their ISO systems with the Company culture
www.vyomlabs.com Vyom Labs Staggered consulting approach Process Definition Baseline gap Assessment Process 1 Design & Documentation Configure Process in Tool Process Testing Process Training To stakeholders Deploy the Process Phase 2 Planning Directing tool Config team High Level Detailed Process Implementation Review Process Discrption Awareness Campaign Vyom Labs IPs (vConnect, MetricEdge, IT Cost Management) Project Plan Phase 1 Planning Full Involvement Direction & Guidance Partial Involvement Vyom Labs Consultants’ Involvement
www.vyomlabs.com Vyom Labs offerings: Frameworks and Standards Services ITIL, ITSM, Cloud, COBIT, ISMS, IT Governance IT Financial Management & IT Cost Management Service Management Tools’ Selection RaaS (Resource as a Service) ISO 20000, ISO 27001 CSI
www.vyomlabs.com Key Partnerships Other Key Partnerships
www.vyomlabs.com Thank You! Email : firstname.lastname@example.org Website : www.vyomlabs.com
ISO 20K Foundation; COBIT 5; ISO 27001; Cloud; Products . BMC Products. IT Service Management; Workload Automation; IT Operations; Cloud Management; IT ...
Vote! Integrated approach for implementing ISO 9001, ISO 20000 and ISO27001. Integrated approach for implementing ISO 9001, ISO 20000 and ISO27001 from ...
... Home / Company Blog / Why do we need an Integrated Approach for ISO 9001, ... ISO 9001, 20000-1 and ISO 27001 ... implementing an integrated ISO ...
The case for implementing ISO 27001 and ISO 20000-1 together, ... using an integrated approach would seem ideal. ISO ... ISO 9001; Other Blogs.
For organisations who have multiple standards such as; ISO 9001, ISO 14001, OHSAS 18001, ISO / IEC 27001, ISO 20000 and ISO 22000 then a PAS 99 system ...
You need an Integrated System with ISO 27001/ISO 20000. ... easier: ISO 9001, ISO 14001, ISO 27001, ... of implementing ISO 27001 and ISO 20000 ...
... IT service management (ISO 20000), quality management (ISO 9001) ... already been covered by ISO 27001 and established again when implementing ISO 20000.
ISO 20000. Implementing (2 days) Requirements ... Integrated 9001-14001-18001. ... AS9100, AS9110, AS9120, ISO 13485, ISO 27001, ISO 20000, ISO 14001, ...
ISO27013 (ISO 27013) Integrated ... ISO 27001; ISO 38500; ISO 50001; IT ... ISO/IEC 27001 and ISO/IEC 20000. Taking an integrated approach to management ...