This Webinar will provide a holistic view for you to learn and understand of how ISO9001, ISO20000 and 27001 when blended in a significant way become a powerful combination best describing the integrated approach benefits. Collectively they ensure a robust world class management system touching upon all the critical areas of an organizational structure.
2. www.vyomlabs.com
Vyom Labs Overview
Vyom Labs proudly works with the purpose of ‘Enabling organizations to Align
IT with Business for maximizing value.’
Founded In: 2003
Head Quarters: Pune, India
Geographic Spread: 30+ Countries
End-to-end Offerings: Consulting, Products and Education
Key Partnerships: BMC, Oracle, EXIN, APMG, ISACA
Key Certification: ISO 20000
Vyom Labs HQ
Pune, India
3. www.vyomlabs.com
Disclaimer
All other trademarks, service marks and logos used in this Webinar are the
trademarks, service marks or logos of their respective owners.
The views expressed in this Webinar are views of the speakers and do not
necessarily reflect the views of Vyom Labs Pvt. Ltd.
4. www.vyomlabs.com
Agenda
Introduction to ISO 9001, ISO 20000 and ISO27001 Standards
Why integrated approach?
Approach for implementing
Benefits of the integrated implementation approach
Q & A
5. www.vyomlabs.com
Introduction to ISO 9001
ISO 9001:2008 deals with the fundamentals of quality management
systems, including the eight management principles upon which the family of
standards is based
Benefits
Continuous improvement of the customer satisfaction
Increased confidence in the organization
Increase the competitiveness
Optimization of processes in the organization and increase value added
Improve company culture and unity in the organization
6. www.vyomlabs.com
Introduction to ISO 20000
ISO 20000:2011 is a Quality standard for IT service management and an
integrated process approach for IT service management (SMS)
Benefits
High quality and reliability of services
Improving an efficiency and added value of service provided
Enhance trust and the authority to clients
Increase competitive advantages
7. www.vyomlabs.com
Introduction to ISO 27001
ISO 27001 explains the purpose of an Information Security Management
System (ISMS), used to manage information security risks and controls within
an organization.
Information Security provides assurance of Business Processes by enforcing
appropriate Security Controls.
Benefits
Identify risks and put controls in place to manage or reduce them
Increase the security of sensitive organization information (commercial information,
information technology, manufacturing information, etc.).
Requirements of existing legislation (personal data, accounting information, e-
commerce, etc.).
Compliance with the requirements of information security posed by partners
Increase prestige and credibility of the organization
Competitive advantages
8. www.vyomlabs.com
Why integrated approach?
Organizations are compelled to implement multiple ISO systems namely ISO
9001, ISO 20000-1 & ISO 27001 with different business drivers
Need to manage multiple legal and regulatory requirements
Many common elements among the three ISO standards
One single integrated Management system compared to three separate
management systems
Positive impacts on Employees as they realize the value of ISO systems as it
helps them do their job better
Organizational change
10. www.vyomlabs.com
Similarity between Standards
Common elements between all three standards
Management responsibility
Document management
Resource management
Management reviews
Internal audit
Continuous improvement
Common elements in ISO 20000 and 270001
Information security policy
Risk management
Information security controls
Security incident management
11. ISO 20K & 27001
General
awareness
Define Vision,
scope and
objectives
Establish project
for ISO 20K &
27001
implementation
Approval from
senior
management
Scope finalization
for ISO 20K
&27001
Integrated pre-
certification
review audit
Implementation
with handholding
Establish
Management
systems, policies
and procedures
Address the gaps
found in audit
Final evaluation for
certification
readiness
External
Certification Audit
Initial integrated
Gap analysis for
ISO 20K & 27001
12. www.vyomlabs.com
Benefits of integrated approach
Lowering costs of an integrated programme
Elimination of unnecessary duplication
Reduction in implementation time due to integrated development of processes
common to all three standards
Higher caliber ISO Consultants who will save customers time & money and help
integrate their ISO systems with the Company culture
13. www.vyomlabs.com
Vyom Labs Staggered consulting approach
Process
Definition
Baseline gap
Assessment
Process 1 Design &
Documentation
Configure
Process in Tool
Process
Testing
Process Training
To stakeholders
Deploy the
Process
Phase 2
Planning
Directing tool
Config team
High Level Detailed
Process Implementation Review
Process
Discrption
Awareness
Campaign
Vyom Labs IPs
(vConnect, MetricEdge,
IT Cost Management)
Project Plan
Phase 1 Planning
Full Involvement
Direction & Guidance
Partial Involvement
Vyom Labs
Consultants’
Involvement
14. www.vyomlabs.com
Vyom Labs offerings: Frameworks and Standards
Services
ITIL, ITSM,
Cloud, COBIT,
ISMS, IT
Governance
IT Financial
Management
& IT Cost
Management
Service
Management
Tools’
Selection
RaaS
(Resource as
a Service)
ISO 20000,
ISO 27001
CSI