Integrated approach for implementing ISO 9001, ISO 20000 and ISO27001


Published on

This Webinar will provide a holistic view for you to learn and understand of how ISO9001, ISO20000 and 27001 when blended in a significant way become a powerful combination best describing the integrated approach benefits. Collectively they ensure a robust world class management system touching upon all the critical areas of an organizational structure.

Published in: Technology
1 Comment
  • I like that massive presentation , just wandering if I can have a copy of it , please email it to
    Are you sure you want to  Yes  No
    Your message goes here
No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide

Integrated approach for implementing ISO 9001, ISO 20000 and ISO27001

  1. 1. Presents Webinar on: Integrated approach for implementing ISO 9001, ISO 20000 and ISO27001
  2. 2. Vyom Labs Overview  Vyom Labs proudly works with the purpose of ‘Enabling organizations to Align IT with Business for maximizing value.’ Founded In: 2003 Head Quarters: Pune, India Geographic Spread: 30+ Countries End-to-end Offerings: Consulting, Products and Education Key Partnerships: BMC, Oracle, EXIN, APMG, ISACA Key Certification: ISO 20000 Vyom Labs HQ Pune, India
  3. 3. Disclaimer  All other trademarks, service marks and logos used in this Webinar are the trademarks, service marks or logos of their respective owners.  The views expressed in this Webinar are views of the speakers and do not necessarily reflect the views of Vyom Labs Pvt. Ltd.
  4. 4. Agenda  Introduction to ISO 9001, ISO 20000 and ISO27001 Standards  Why integrated approach?  Approach for implementing  Benefits of the integrated implementation approach  Q & A
  5. 5. Introduction to ISO 9001  ISO 9001:2008 deals with the fundamentals of quality management systems, including the eight management principles upon which the family of standards is based  Benefits Continuous improvement of the customer satisfaction Increased confidence in the organization Increase the competitiveness Optimization of processes in the organization and increase value added Improve company culture and unity in the organization
  6. 6. Introduction to ISO 20000  ISO 20000:2011 is a Quality standard for IT service management and an integrated process approach for IT service management (SMS)  Benefits High quality and reliability of services Improving an efficiency and added value of service provided Enhance trust and the authority to clients Increase competitive advantages
  7. 7. Introduction to ISO 27001  ISO 27001 explains the purpose of an Information Security Management System (ISMS), used to manage information security risks and controls within an organization.  Information Security provides assurance of Business Processes by enforcing appropriate Security Controls.  Benefits Identify risks and put controls in place to manage or reduce them Increase the security of sensitive organization information (commercial information, information technology, manufacturing information, etc.). Requirements of existing legislation (personal data, accounting information, e- commerce, etc.). Compliance with the requirements of information security posed by partners Increase prestige and credibility of the organization Competitive advantages
  8. 8. Why integrated approach?  Organizations are compelled to implement multiple ISO systems namely ISO 9001, ISO 20000-1 & ISO 27001 with different business drivers  Need to manage multiple legal and regulatory requirements  Many common elements among the three ISO standards  One single integrated Management system compared to three separate management systems  Positive impacts on Employees as they realize the value of ISO systems as it helps them do their job better  Organizational change
  9. 9. Approach for implementation ISO 9001 ISO 20000 ISO 27001 4 to 6 Months 4 to 6 Months
  10. 10. Similarity between Standards Common elements between all three standards  Management responsibility  Document management  Resource management  Management reviews  Internal audit  Continuous improvement Common elements in ISO 20000 and 270001  Information security policy  Risk management  Information security controls  Security incident management
  11. 11. ISO 20K & 27001 General awareness Define Vision, scope and objectives Establish project for ISO 20K & 27001 implementation Approval from senior management Scope finalization for ISO 20K &27001 Integrated pre- certification review audit Implementation with handholding Establish Management systems, policies and procedures Address the gaps found in audit Final evaluation for certification readiness External Certification Audit Initial integrated Gap analysis for ISO 20K & 27001
  12. 12. Benefits of integrated approach  Lowering costs of an integrated programme  Elimination of unnecessary duplication  Reduction in implementation time due to integrated development of processes common to all three standards  Higher caliber ISO Consultants who will save customers time & money and help integrate their ISO systems with the Company culture
  13. 13. Vyom Labs Staggered consulting approach Process Definition Baseline gap Assessment Process 1 Design & Documentation Configure Process in Tool Process Testing Process Training To stakeholders Deploy the Process Phase 2 Planning Directing tool Config team High Level Detailed Process Implementation Review Process Discrption Awareness Campaign Vyom Labs IPs (vConnect, MetricEdge, IT Cost Management) Project Plan Phase 1 Planning Full Involvement Direction & Guidance Partial Involvement Vyom Labs Consultants’ Involvement
  14. 14. Vyom Labs offerings: Frameworks and Standards Services ITIL, ITSM, Cloud, COBIT, ISMS, IT Governance IT Financial Management & IT Cost Management Service Management Tools’ Selection RaaS (Resource as a Service) ISO 20000, ISO 27001 CSI
  15. 15. Key Partnerships Other Key Partnerships
  16. 16. Thank You! Email : Website :