The Cove Business Standards Discussion Forums More Free Files Forum Discussion Thread Post Attachments Listing Cove Discussion Forums Main Page
UL - Underwriters Laboratories - Health Sciences
Go Back   The Elsmar Cove Business Systems and Standards Discussion Forums > National and International Business System Standards > IEC 27001 - Information Security Management Systems (ISMS)
Forum Username

Elsmar Cove Forum Visitor Notice(s)

Wooden Line

Time Required to Implement ISO 27001 if ISO 9001 certified & SOX compliant?


Elsmar XML RSS Feed
Elsmar Cove Forum RSS Feed

Monitor the Elsmar Forum
Sponsor Links



Courtesy Quick Links

Links that Cove visitors will find useful in your quest for knowledge:


International Standards Bodies - World Wide Standards Bodies

ASQ - American Society for Quality

International Standards Organization - ISO Standards and Information

Howard's
International Quality Services

Marcelo Antunes'
SQR Consulting, and
Medical Devices Expert Forum

Bob Doering
Bob Doering's Blogs and,
Correct SPC - Precision Machining

NIST's Engineering Statistics Handbook

IRCA - International Register of Certified Auditors

SAE - Society of Automotive Engineers

Quality Digest

IEST - Institute of Environmental Sciences and Technology


Related Topic Tags
implementation (general), implementing multiple standards in a company, iso 27001 - information security management system (isms), iso 9001 - quality management systems, sox (sarbanes oxley act)
Reply
 
Thread Tools Search this Thread Rate Thread Content Display Modes
  Post Number #1  
Old 13th April 2012, 07:29 PM
LAF1017

 
 
Total Posts: 1
Question Time Required to Implement ISO 27001 if ISO 9001 certified & SOX compliant?

My company is looking at implementing 27001 to meet customer requirements in India. We are currently ISO 9001 certified and SOX compliant. My employee count is around 650. What has been the forum's time and effort experience with the 27001 implementation?

Sponsored Links
  Post Number #2  
Old 13th April 2012, 09:05 PM
AndyN's Avatar
AndyN

 
 
Total Posts: 8,459
Let Me Help You Re: Time Required to Implement ISO 27001 if ISO 9001 certified & SOX compliant?

Quote:
In Reply to Parent Post by LAF1017 View Post

My company is looking at implementing 27001 to meet customer requirements in India. We are currently ISO 9001 certified and SOX compliant. My employee count is around 650. What has been the forum's time and effort experience with the 27001 implementation?
Hello and welcome to the Cove. Your answer is going to be very dependent upon the scope of your ISMS. You certainly can save some time in not having to create the management systems aspects of ISO 27001, which are heavily leveraged from similar (sometimes identical) ISO 9001 requirements.

The rest of the work is going to be dependent on the scope (as mentioned) of the ISMS - what's the focus of implementation, what controls are identified as being applicable (from annex A) and how broad their application is across the business. So, it's going to require the boundaries (scope) of the ISMS to be defined, before anything else is done. From that a work plan/assignments can be drawn up and a time estimate made from that in turn.
Sponsored Links

  Post Number #3  
Old 13th April 2012, 11:19 PM
Randy's Avatar
Randy

 
 
Total Posts: 8,408
Re: Time Required to Implement ISO 27001 if ISO 9001 certified & SOX compliant?

As Andy said there isn't any magic potion or formula, it will take what it will take
  Post Number #4  
Old 19th April 2012, 07:37 PM
Richard Regalado's Avatar
Richard Regalado

 
 
Total Posts: 264
Re: Time Required to Implement ISO 27001 if ISO 9001 certified & SOX compliant?

Quote:
In Reply to Parent Post by LAF1017 View Post

My company is looking at implementing 27001 to meet customer requirements in India. We are currently ISO 9001 certified and SOX compliant. My employee count is around 650. What has been the forum's time and effort experience with the 27001 implementation?
Hello LAF1017. My experience back in '03 for a BPO with 4,500 employees, certified to ISO 9001 and HIPAA and SOX compliance is 6 months for full deployment of then BS 7799 (precursor to ISO 27001).

That company is SPi Global (http://www.spi-global.com/) and one the key ingredients in the implementation process is their Quality Division. All 10 or more quality analysts actively assisted my team of 3 consultants in the risk management, documentation and internal auditing efforts.
Reply

Lower Navigation Bar
Go Back   The Elsmar Cove Business Systems and Standards Discussion Forums > National and International Business System Standards > IEC 27001 - Information Security Management Systems (ISMS)

Bookmarks



Visitors Currently Viewing this Thread: 1 (0 Registered Visitors (Members) and 1 Unregistered Guest Visitors)
 
Thread Tools Search this Thread
Search this Thread:

Advanced Forum Search
Display Modes Rate Thread Content
Rate Thread Content:

Forum Posting Settings
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


Similar Discussion Threads
Discussion Thread Title Thread Starter Forum Replies Last Post or Poll Vote
Working in a company where we try to implement ISO 27001 weakness IEC 27001 - Information Security Management Systems (ISMS) 9 24th April 2014 10:28 PM
ISO 27001 compliant Information Security Log chris02 - 2011 IEC 27001 - Information Security Management Systems (ISMS) 8 7th April 2011 09:17 PM
Action plan of the significant steps required to implement ISO 9001:2008 mistalulik Quality Manager and Management Related Issues 1 30th September 2009 05:41 AM
My Company wants to Implement ISO 9001-2000 and become Certified - The Big Start Andy CDA ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 16 21st December 2007 04:36 PM
Are ISO 9001 certified companies required to use ISO17025 facilities for calibration? al40 ISO 17025 related Discussions 13 3rd August 2006 09:45 PM



The time now is 06:18 PM. All times are GMT -4.
Your time zone can be changed in your UserCP --> Options.


 
 


NOTE: This forum uses "Cookies"