Académique Documents
Professionnel Documents
Culture Documents
steps
Plan
Plan
Do
Check
Act
and services
Understand the organization external and internal issues
Identify the organization competitors
Identify the organizations interested parties
Understand needs and expectations of interested parties
Understand the organizations legal, regulatory and contractual
requirements
10. Understand interfaces and interdependencies between
activities performed by the organization
11. Understand the organization ISMS requirements
12. Understand the requirements of interested parties relevant to
the ISMS
13. Determine scope for ISMS implementation (locations, sites
and/or functions ready to implement ISMS)
14. Define overall IS Policy, including IS Objectives, applicable
business requirements and top management commitment for
continual improvement
15.
Do
Plan
Check
Act
Do
19.
20.
21.
22.
23.
27.
28.
interested parties
29. Conduct necessary IS training to employees and contractors
30. Carry necessary IS awareness initiatives
31. Operate ISMS (record IS events, activities, communications,
changes, incidents, accidents and NCs)
Check
Plan
Act
Do
Check
32.
33.
Act
Act
Check
Plan
Do
34.
35.