ISO 27001:2013 — Consultancy Framework
ISMS = Information Security Management System, ISMS-
, Document eae Internal Audlit|_IMternal Audit
Gap Analysis ait [>| Report (Readiness
ae —_ Check)
» —_
c
a
GS Gap Analysis Process Update 7 Identify and Internal
an Report _| Documentation | Revise Implement Audit Re
< | ts Processes Controls —[T
oO ry
€ 180 27001 Domain & Training of Perform Cueuaor
oz Action Plan (Control Area Defined Asset Risk Pndines
= —_— ~ Analysis Processes Assessment gi
2 T +t
g 1So 27001
ao Training ; Implementation] [Asset Risk Certification
~ 9 OT of Defined |» Assessment Audit =
of ISMS-1G Processes Training Certification
Abbreviations:
ISMS Implementation Group
Coryrights® Quality Aim