GES Website - Implementation of ISO 22301, and ISO 27001

Implementation of ISO 22301, and ISO 27001

Milestone

Project Started

Milestone 1
Gap Assessment &
Planning

Milestone 2
Management Systems
Implementation

Milestone 3
Review and External
Audit

End of Project

Project Scope

ISO 27001 (ISMS):
1. Information assets (data, software, hardware, networks).
2. Security controls (access control, encryption, incident management).
3. Risk assessment & treatment for confidentiality, integrity, and availability (CIA).
ISO 22301 (BCMS):
1. Critical business processes (e.g., IT services, customer support, supply chain).
2. Business Impact Analysis (BIA) and recovery strategies.
3. Disaster recovery & incident response plans.

Project Objective

Achieve ISO 27001 certification to establish a robust information Security Management System (ISMS).
Achieve ISO 22301 certification to implement a Business Continuity Management System (BCMS).
Ensure alignment between ISMS and BCMS for integrated risk and resilience management.
Comply with legal, regulatory, and contractual requirements.

Project Output

ISO 27001:
1. Risk Assessment & Treatment Plan.
2. ISMS Policy & Procedures.
3. Statement of Applicability (SoA).
4. Internal Audit & Management Review Reports.
ISO 22301:
1. Business Impact Analysis (BIA).
2. Business Continuity Policy & Plans.
3. Disaster Recovery & Crisis Management Plans.
4. BCMS Exercise & Test Results.

To establish, implement, maintain, and continuously improve an integrated IT Service Management (ISO 20000) and Business Continu...

To establish, implement, maintain, and continuously improve an integrated IT Service Management (ISO 20000) and Business Continu...

Digital Transformation Case Studies