logo

Organizational Readiness and Risk Assessment for ISO 27001:2013 Certification

9 Pages1054 Words440 Views
   

Added on  2023-06-10

About This Document

This article discusses the significance of assessing organizational readiness and performing risk assessment before applying for ISO 27001:2013 certification. It covers the process and schedule for risk assessment and the technical team involved. The article also explains the procedure for ISO/IEC 27001: 2013 certification.

Organizational Readiness and Risk Assessment for ISO 27001:2013 Certification

   Added on 2023-06-10

ShareRelated Documents
Running Head: Cyber Security
Cyber security
Name of the Student
Name of the University
Author note
Organizational Readiness and Risk Assessment for ISO 27001:2013 Certification_1
1Cyber Security
Table of Contents
Organizational readiness for the ISO 27001:2013 certification:.....................................................2
Risk assessment before the certification:.........................................................................................3
Risk assessment schedule:...........................................................................................................4
Internal technical team involved:.................................................................................................5
Procedure for ISO/IEC 27001: 2013 certification:..........................................................................6
References:......................................................................................................................................7
Organizational Readiness and Risk Assessment for ISO 27001:2013 Certification_2
2Cyber Security
Organizational readiness for the ISO 27001:2013 certification:
In order to make the ISO 27001:2013 certification effective for the organization and
ensure that the investment for the certification is a successful one, a formal assessment of the
organizational readiness is an important factor to consider, if not mandatory. It gives the
organization a fair idea whether it is ready for the certification or not. The topic of information
investment has become one of the major topic in the field of business investment and to derive
success from the investment has been the prime concern for the organizations (Luftman, 2015).
In order to make the investment successful, it is important to make sure that the business
strategies are properly aligned. Hence, it becomes necessary to assess and evaluate the Strategic
Alignment Maturity Levels from the perspective of the Corporate and Project Implementation. In
order to ensure the strategic alignment, the transition of focus from corporate level to project
level is necessary. Although the decision are taken at the corporate level, but the shift of focus at
the project implement level is necessary to achieve alignment at the project implementation
(Luftman & Kempiah, 2015). Project alignment is initiated with the corporate strategic
alignment, followed by the project alignment which makes the organization alignment strategy
successful.
Organizational Readiness and Risk Assessment for ISO 27001:2013 Certification_3

End of preview

Want to access all the pages? Upload your documents or become a member.

Related Documents
Cloud Architecture Risk Assignment PDF
|15
|2969
|384

Risk Assessment on Network Infrastructure of CONVXYZ
|27
|3351
|91

Policy Management | Overview of Models
|6
|1182
|24

Cyber Security Part 2 - Industry Specific Cyber Law, Critical Information Infrastructure, Compliance Test, Legal Elements and Costs
|7
|1609
|170

Report on Risk and Threat to Caduceus
|25
|5698
|242

IT Security Risk Assessment
|13
|2259
|16