Chapter 2: Project initiation

After completing the project mandate, it is time to initiate the project. Building on the PID, it should consist of the following:

• The project objective – i.e. to achieve certification to or conformity with ISO 27001 by a set date.

• The governance structure – identifying the project team, typically with a project board for projects that are scheduled to take more than nine months.

• The project plan – a more detailed outline of who will perform certain activities and when.

• A project risk register – an assessment of potential uncertainties that could impact the project’s progress or outcomes.

• Regular review dates – scheduled checkpoints throughout the project timeline for evaluating progress and ensuring alignment ...

Get Nine Steps to Success - An ISO 27001:2022 Implementation Overview now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Nine Steps to Success - An ISO 27001:2022 Implementation Overview by Alan Calder

CHAPTER 2: PROJECT INITIATION

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly