SlideShare a Scribd company logo

GRC2-KSA.ppt

Download as PPT, PDF
S
ssuser3901ab

This document discusses implementing ISO 27001, ISO 20000, and ISO 22301 standards to establish comprehensive governance, risk management, and compliance. It introduces the standards and explains how they address information security (ISO 27001), IT service management (ISO 20000), and business continuity (ISO 22301). Implementing all three provides a complete solution following best practices for protecting information, ensuring quality IT services, and maintaining business operations. The document emphasizes that governance, risk, and compliance projects are important for organizations and outlines an agenda to discuss the standards and their value in comprehensive governance coverage.

Data & Analytics
1 of 31
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
Governance, Risk & Compliance Using ISO 27001, ISO 20000 & ISO 22301 Sharing the Leading Best Practices in One Project
Agenda  Introduction  The components of the Good Governance – ISO 27001- Protecting the Information – ISO 20,000 – Ensuring the Best IT Service Management – ISO 22301 – Ensuring the Continuity of the Business  Checklist  Conclusion
GRC
Importance of GRC  GRC Projects are must for various reasons  GRC has Crossed V1 Speed.
Three Important Components of IT
What is Governance?
What is the Solution?
Explore Standards The Solution
9 Gartner Hype Cycle
10 Managing the Expectations
11 Gartner’s View
Selecting Top 3 Standards for Comprehensive Coverage
Comprehensive Governance Coverage Information Security ISO 27001 (IT) Service Management System ISO 20,000 Business Continuity ISO 22301
The Must have Standard. Information Security and ISO 27001
What is ISO 27001?  ISO 27001 is the Standard of Information Security  Two Parts – ISO 27001: Specifications – ISO 27002: Code of Practices  Uniqueness of ISO 27001 – Standard – 114 Annex A Controls
ISO 27001
ISO 27000 Series..  Anxiously Waiting for… – 27000: Fundamentals and Vocabulary – 27001: ISMS Auditable and certifiable requirements – 27002: Replaced ISO 17799 – 27003: ISMS Implementation Guidelines – 27004: ISMS Measurement – 27005: ISMS Risk Management – 27006: Guide to the certification/registration process for accredited ISMS certification/registration bodies – 27007: Guidance for those auditing Information Security Management Systems against ISO 27001 – 27031: Information security management guidelines for telecommunications
ISO 20,000 for (IT) Service Management System
ISO 20000
ITIL V3.0
ITIL  It is all about the ‘Service’  IT is recognized as ‘Service Provider’ – To be more specific IT is Service Provider to it’s customer Business Users
Based on Deming Cycle
Deming Cycle  William Edwards Deming – (October 14, 1900 – December 20, 1993) was Statistician. – Best known for his work in Japan. – From 1950 onward he taught top management how to improve  Design (and thus service),  Product quality,  Testing and s
ISO 22301 for Business Continuity Management
Importance of BCM
What is a Disaster?
Storage Recovery Strategy
In Summary….
Fast Track Implementation
No Standardization is No Excuse
Thank You!

More Related Content

PPT
Overview of ISO 27001 ISMS
Akhil Garg
 
PDF
Select information security system 2015en
Iris Maaß
 
PDF
It security iso 27001
Iris Maaß
 
PPTX
Use_of_ISO_in_IT_Presentation_Enhanced.pptx
HaziqIrfan32
 
PPTX
FRAMEWORKS AND STANDARDS-GRC,GDPR,SOX,PCI DSS,SOX,ISO
alexangelmary99
 
PDF
Whitepaper iso 27001_isms | All about ISO 27001
Chandan Singh Ghodela
 
PPTX
ISO_in_IT_Presentation for understanding the use of ISO in it
HaziqIrfan32
 
PDF
NQA ISO 27001 Implementation Guide
NQA
 
Overview of ISO 27001 ISMS
Akhil Garg
 
Select information security system 2015en
Iris Maaß
 
It security iso 27001
Iris Maaß
 
Use_of_ISO_in_IT_Presentation_Enhanced.pptx
HaziqIrfan32
 
FRAMEWORKS AND STANDARDS-GRC,GDPR,SOX,PCI DSS,SOX,ISO
alexangelmary99
 
Whitepaper iso 27001_isms | All about ISO 27001
Chandan Singh Ghodela
 
ISO_in_IT_Presentation for understanding the use of ISO in it
HaziqIrfan32
 
NQA ISO 27001 Implementation Guide
NQA
 

Similar to GRC2-KSA.ppt (20)

PDF
NQA - ISO 27001 Implementation Guide
NA Putra
 
PDF
NQA Your Risk Assurance Partner
NQA
 
PPTX
Standardization of IT Processes
Natarajan V
 
PDF
NQA-ISO-27001-Implementation-Guide and implementation procedure book
Krushna Mahapatra
 
PDF
NQA-ISO-27001-Implementation-Guide.pdf..
ssuserc911b3
 
PDF
Cyber Security Management
IT Governance Ltd
 
PPT
ISMS Requirements
humanus2
 
PPTX
ISO 27001 Training Module 1 - An Introduction to ISO 27001.pptx
MustafaHaydar3
 
PDF
ISO 27001:2022 Introduction
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
PDF
ISO 27001 is the commonly used standard for ISMS implementation and certifica
Ibrahim78026
 
PPTX
2017 QA Forum presentation Igor Stevkosvski CIS.pptx
JelenaCice1
 
PPTX
the role of 27001 in cybersecurity pp.pptx
floresmika308
 
PDF
NQA Your Complete Guide to ISO 27001
NA Putra
 
PDF
NQA Your Complete Guide to ISO 27001
NQA
 
PDF
ISO 27001_2022 What has changed 2.0 for ISACA.pdf
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
PDF
C-SEC|2016 Session 1 Addressing Cyber Threats with Modern Security Framework_...
acinfotec
 
PPTX
Presentaion.pptx
sanathchandranath69
 
PPTX
Experience from Implementation of ISO 20000
Ana Meskovska
 
PDF
Iso 20000 white paper
Lakshy Management Consultant Pvt Ltd
 
PPT
4 System For Information Security
Ana Meskovska
 
NQA - ISO 27001 Implementation Guide
NA Putra
 
NQA Your Risk Assurance Partner
NQA
 
Standardization of IT Processes
Natarajan V
 
NQA-ISO-27001-Implementation-Guide and implementation procedure book
Krushna Mahapatra
 
NQA-ISO-27001-Implementation-Guide.pdf..
ssuserc911b3
 
Cyber Security Management
IT Governance Ltd
 
ISMS Requirements
humanus2
 
ISO 27001 Training Module 1 - An Introduction to ISO 27001.pptx
MustafaHaydar3
 
ISO 27001:2022 Introduction
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
ISO 27001 is the commonly used standard for ISMS implementation and certifica
Ibrahim78026
 
2017 QA Forum presentation Igor Stevkosvski CIS.pptx
JelenaCice1
 
the role of 27001 in cybersecurity pp.pptx
floresmika308
 
NQA Your Complete Guide to ISO 27001
NA Putra
 
NQA Your Complete Guide to ISO 27001
NQA
 
ISO 27001_2022 What has changed 2.0 for ISACA.pdf
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
C-SEC|2016 Session 1 Addressing Cyber Threats with Modern Security Framework_...
acinfotec
 
Presentaion.pptx
sanathchandranath69
 
Experience from Implementation of ISO 20000
Ana Meskovska
 
Iso 20000 white paper
Lakshy Management Consultant Pvt Ltd
 
4 System For Information Security
Ana Meskovska
 
Ad

More from ssuser3901ab (11)

PDF
Appendix 1 - Strategic Asset Management Plan-property.pdf
ssuser3901ab
 
PPT
Pertemuan2.ppt
ssuser3901ab
 
PPT
Pertemuan1.ppt
ssuser3901ab
 
PPT
Pertemuan3.ppt
ssuser3901ab
 
PPT
Pertemuan4.ppt
ssuser3901ab
 
PPT
Pertemuan5.ppt
ssuser3901ab
 
PPT
Pertemuan6.ppt
ssuser3901ab
 
PPT
Pertemuan7.ppt
ssuser3901ab
 
PDF
IBM Maximo AM-USER.pdf
ssuser3901ab
 
PPTX
MOT-ok.pptx
ssuser3901ab
 
PPT
Pertemuan1OK.ppt
ssuser3901ab
 
Appendix 1 - Strategic Asset Management Plan-property.pdf
ssuser3901ab
 
Pertemuan2.ppt
ssuser3901ab
 
Pertemuan1.ppt
ssuser3901ab
 
Pertemuan3.ppt
ssuser3901ab
 
Pertemuan4.ppt
ssuser3901ab
 
Pertemuan5.ppt
ssuser3901ab
 
Pertemuan6.ppt
ssuser3901ab
 
Pertemuan7.ppt
ssuser3901ab
 
IBM Maximo AM-USER.pdf
ssuser3901ab
 
MOT-ok.pptx
ssuser3901ab
 
Pertemuan1OK.ppt
ssuser3901ab
 
Ad

Recently uploaded (20)

PDF
.pdf is not working space design for the following data for the following dat...
jerinjoy242
 
PPTX
STUDY DESIGN details- Lt Col Maksud (21).pptx
AyeshaAsha11
 
PPT
Chapter 3 METAL JOINING.pptnnnnnnnnnnnnn
JanakiRaman206018
 
PDF
Mega Projects Data Mega Projects Data
saidsalah8181
 
PPTX
climate analysis of Dhaka ,Banglades.pptx
rrawjatun
 
PPT
Miokarditis (Inflamasi pada Otot Jantung)
NandaAndini1
 
PPTX
Introduction to Knowledge Engineering Part 1
busyprogrammersguide
 
PDF
Fluorescence-microscope_Botany_detailed content
dollydoll12
 
PPT
Quality review (1)_presentation of this 21
abobaker13
 
PPTX
mbdjdhjjodule 5-1 rhfhhfjtjjhafbrhfnfbbfnb
CHINTU5000
 
PDF
TRAFFIC-MANAGEMENT-AND-ACCIDENT-INVESTIGATION-WITH-DRIVING-PDF-FILE.pdf
chouziyu14
 
PPTX
Computer network topology notes for revision
BatoolRawat
 
PPTX
Introduction to Basics of Ethical Hacking and Penetration Testing -Unit No. 1...
AshutoshDeshmukh33
 
PPTX
05. PRACTICAL GUIDE TO MICROSOFT EXCEL.pptx
macomputermacomputer
 
PPTX
Business Ppt On Nestle.pptx huunnnhhgfvu
ashaurya327
 
PPTX
ALIMENTARY AND BILIARY CONDITIONS 3-1.pptx
chepkoitcheruiyot
 
PDF
168300704-gasification-ppt.pdfhghhhsjsjhsuxush
sriram270905
 
PPTX
Acceptance and paychological effects of mandatory extra coach I classes.pptx
ZaheerAhmad228692
 
PDF
Launch Your Data Science Career in Kochi – 2025
sharafas2563
 
PDF
Galatica Smart Energy Infrastructure Startup Pitch Deck
Shahzaib Ajmal
 
.pdf is not working space design for the following data for the following dat...
jerinjoy242
 
STUDY DESIGN details- Lt Col Maksud (21).pptx
AyeshaAsha11
 
Chapter 3 METAL JOINING.pptnnnnnnnnnnnnn
JanakiRaman206018
 
Mega Projects Data Mega Projects Data
saidsalah8181
 
climate analysis of Dhaka ,Banglades.pptx
rrawjatun
 
Miokarditis (Inflamasi pada Otot Jantung)
NandaAndini1
 
Introduction to Knowledge Engineering Part 1
busyprogrammersguide
 
Fluorescence-microscope_Botany_detailed content
dollydoll12
 
Quality review (1)_presentation of this 21
abobaker13
 
mbdjdhjjodule 5-1 rhfhhfjtjjhafbrhfnfbbfnb
CHINTU5000
 
TRAFFIC-MANAGEMENT-AND-ACCIDENT-INVESTIGATION-WITH-DRIVING-PDF-FILE.pdf
chouziyu14
 
Computer network topology notes for revision
BatoolRawat
 
Introduction to Basics of Ethical Hacking and Penetration Testing -Unit No. 1...
AshutoshDeshmukh33
 
05. PRACTICAL GUIDE TO MICROSOFT EXCEL.pptx
macomputermacomputer
 
Business Ppt On Nestle.pptx huunnnhhgfvu
ashaurya327
 
ALIMENTARY AND BILIARY CONDITIONS 3-1.pptx
chepkoitcheruiyot
 
168300704-gasification-ppt.pdfhghhhsjsjhsuxush
sriram270905
 
Acceptance and paychological effects of mandatory extra coach I classes.pptx
ZaheerAhmad228692
 
Launch Your Data Science Career in Kochi – 2025
sharafas2563
 
Galatica Smart Energy Infrastructure Startup Pitch Deck
Shahzaib Ajmal
 

GRC2-KSA.ppt