The Elsmar Cove Wiki More Free Files The Elsmar Cove Forums Discussion Thread Index Post Attachments Listing Failure Modes Services and Solutions to Problems Elsmar cove Forums Main Page Elsmar Cove Home Page
Miner's MSA (Measurement Systems Analysis) Blog   Elsmar.com Forum Home Page
Go Back   The Elsmar Cove Forum > ISO (International Organization for Standardization) Standards > ISO/IEC 27000 Series - Information Security Management Systems (ISMS)
Forum Username

Search the Elsmar Cove
Custom Search
Monitor the Elsmar Forum
Follow Marc & Elsmar
Elsmar Cove Forum RSS Feed  Marc Smith's Google+ Page  Marc Smith's Linked In Page   Marc Smith's Elsmar Cove YouTube Page  Marc Smith's Facebook Page  Elsmar Cove Twitter Feed
Elsmar Cove Groups
Elsmar Cove Google+ Group  Elsmar Cove LinkedIn Group  Elsmar Cove Facebook Group
Donate and $ Contributor Forum Access

Courtesy Quick Links

Links that Elsmar Cove visitors will find useful in your quest for knowledge:

Howard's
International Quality Services
Marcelo Antunes'
SQR Consulting
Bob Doering's
Correct SPC - Precision Machining

NIST's Engineering Statistics Handbook
IRCA - International Register of Certified Auditors
SAE - Society of Automotive Engineers
Quality Digest Portal
IEST - Institute of Environmental Sciences and Technology
ASQ - American Society for Quality

Related Topic Tags
implementation (general), implementing multiple standards in a company, iso 27001 - information security management system (isms), iso 9001 - quality management systems, sox (sarbanes oxley act)
Reply
 
Thread Tools Search this Thread Rate Thread Content Display Modes
  #1  
Old 13th April 2012, 07:29 PM
LAF1017

 
 
Posts: 1
Question Time Required to Implement ISO 27001 if ISO 9001 certified & SOX compliant?

My company is looking at implementing 27001 to meet customer requirements in India. We are currently ISO 9001 certified and SOX compliant. My employee count is around 650. What has been the forum's time and effort experience with the 27001 implementation?

Sponsored Links
  #2  
Old 13th April 2012, 09:05 PM
AndyN's Avatar
AndyN

 
 
Posts: 7,838
Let Me Help You Re: Time Required to Implement ISO 27001 if ISO 9001 certified & SOX compliant?

Quote:
In Reply to Parent Post by LAF1017 View Post

My company is looking at implementing 27001 to meet customer requirements in India. We are currently ISO 9001 certified and SOX compliant. My employee count is around 650. What has been the forum's time and effort experience with the 27001 implementation?
Hello and welcome to the Cove. Your answer is going to be very dependent upon the scope of your ISMS. You certainly can save some time in not having to create the management systems aspects of ISO 27001, which are heavily leveraged from similar (sometimes identical) ISO 9001 requirements.

The rest of the work is going to be dependent on the scope (as mentioned) of the ISMS - what's the focus of implementation, what controls are identified as being applicable (from annex A) and how broad their application is across the business. So, it's going to require the boundaries (scope) of the ISMS to be defined, before anything else is done. From that a work plan/assignments can be drawn up and a time estimate made from that in turn.
Sponsored Links

  #3  
Old 13th April 2012, 11:19 PM
Randy's Avatar
Randy

 
 
Posts: 8,247
Re: Time Required to Implement ISO 27001 if ISO 9001 certified & SOX compliant?

As Andy said there isn't any magic potion or formula, it will take what it will take
  #4  
Old 19th April 2012, 07:37 PM
Richard Regalado's Avatar
Richard Regalado

 
 
Posts: 232
Re: Time Required to Implement ISO 27001 if ISO 9001 certified & SOX compliant?

Quote:
In Reply to Parent Post by LAF1017 View Post

My company is looking at implementing 27001 to meet customer requirements in India. We are currently ISO 9001 certified and SOX compliant. My employee count is around 650. What has been the forum's time and effort experience with the 27001 implementation?
Hello LAF1017. My experience back in '03 for a BPO with 4,500 employees, certified to ISO 9001 and HIPAA and SOX compliance is 6 months for full deployment of then BS 7799 (precursor to ISO 27001).

That company is SPi Global (http://www.spi-global.com/) and one the key ingredients in the implementation process is their Quality Division. All 10 or more quality analysts actively assisted my team of 3 consultants in the risk management, documentation and internal auditing efforts.
Reply

Lower Navigation Bar
Go Back   The Elsmar Cove Forum > ISO (International Organization for Standardization) Standards > ISO/IEC 27000 Series - Information Security Management Systems (ISMS)

Do you find this discussion thread helpful and informational?


Bookmarks


Visitors Currently Viewing this Thread: 1 (0 Registered Visitors (Members) and 1 Unregistered Guest Visitors)
 
Thread Tools Search this Thread
Search this Thread:

Advanced Forum Search
Display Modes Rate Thread Content
Rate Thread Content:

Forum Posting Settings
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


Similar Discussion Threads
Discussion Thread Title Thread Starter Forum Replies Last Post or Poll Vote
ISO 9001, ISO 14001, ISO 27001 & ISO 27002 and OHSAS 18001 Standards Gap Analysis The Hitman ISO 19011 *and* ALL other Auditing Discussions 35 26th November 2013 04:02 AM
ISO 27001 compliant Information Security Log chris02 - 2011 ISO/IEC 27000 Series - Information Security Management Systems (ISMS) 8 7th April 2011 09:17 PM
Action plan of the significant steps required to implement ISO 9001:2008 mistalulik Quality Management Related Issues 1 30th September 2009 05:41 AM
My Company wants to Implement ISO 9001-2000 and become Certified - The Big Start Andy CDA ISO 9000, ISO 9001, and ISO 9004 - Questions and Discussions 16 21st December 2007 03:36 PM
Are ISO 9001 certified companies required to use ISO17025 facilities for calibration? al40 ISO 17025 and related Metrology Topics - Measurement Devices, Calibration and Test Laboratories 13 3rd August 2006 09:45 PM



The time now is 04:11 AM. All times are GMT -4.
Your time zone can be changed in your UserCP --> Options.


   


Marc Timothy Smith - Elsmar.com
8466 LeSourdsville-West Chester Road, Olde West Chester, Ohio 45069-1929
513 341-6272
NOTE: This forum uses "cookies".