GES Website - Implementation of ISO 20000, ISO 22301, and ISO 27001

Implementation of ISO 20000, ISO 22301, and ISO 27001

MILESTONE

Project Started

Milestone 1
Gap Assessment &
Planning

Milestone 2
Management Systems
Implementation

Milestone 3
Review and External
Audit

End of Project

Cases

To establish, implement, maintain, and continuously improve an integrated IT Service Management (ISO 20000) and Business Continuity Management (ISO 22301) system to ensure reliable IT services and organizational resilience.
Documentation & Compliance: Develop required policies, procedures, and records and conduct internal audits and management reviews.
ISO 27001 SOA, scope, policies, and ISMS controls
Integration of ISO 20000 & ISO 22301, and ISO 27001:
1. Combined audit reports and corrective action plans.
2. Training materials for staff.
3. Certification readiness reports.

Project Objective

Core ITSM Processes Implementation
1. Service Delivery
2. Incident & Problem Management
3. Change & Configuration Management
ISO 22301 (Business Continuity Management - BCMS)
1. Business Impact Analysis (BIA) & Risk Assessment
2. BCMS Framework Development
3. IT Service Continuity Alignment
4. Training & Awareness
ISMS SOA, scope, policies, and ISMS controls

Project Output

ISO 20000
1. ITSM Policy & Process Documentation.
2. Service Catalog, SLAs, and Operational Level Agreements (OLAs).
3. Incident, Problem, Change Management workflows.
ISO 22301
1. Business Impact Analysis (BIA) Report.
2. Business Continuity Plan (BCP) & IT Disaster Recovery Plan (ITDRP).
3. Risk Treatment Plans.
ISMS SOA, scope, policies, and ISMS controls

As SABIC (Saudi Basic Industries Corporation) is a Saudi Arabian multinational chemical manufacturing company. It is one of the...

The standard defines the scope of IT governance and outlines the responsibilities of those involved in directing and controlling...

Digital Transformation Case Studies