{"id":1730,"date":"2010-10-05T15:38:07","date_gmt":"2010-10-05T13:38:07","guid":{"rendered":"http:\/\/lavigilanta.info\/wordpress\/?p=1730"},"modified":"2010-10-05T15:38:07","modified_gmt":"2010-10-05T13:38:07","slug":"certificacion-iso27001-en-9-sencillos-pasos","status":"publish","type":"post","link":"https:\/\/lavigilanta.info\/?p=1730","title":{"rendered":"Certificaci\u00f3n ISO27001 en 9 sencillos pasos"},"content":{"rendered":"

ISO27001<\/a> paso 1<\/strong>: entender que NO es un proyecto de inform\u00e1tica. <\/p>\n

ISO27001 paso 2<\/strong>: nombrar un SIRO (senior Information & risk officer) que ya est\u00e9 reportando al CEO o director general de la organizaci\u00f3n. <\/p>\n

ISO27001 paso 3<\/strong>: obtener e interiorizar el ISO27002 (recomendaciones para 272001). Hacer un gap analysis: \u00bfqu\u00e9 hago yo y qu\u00e9 dicta 27002? <\/p>\n

ISO 27001 paso 4<\/strong>: entender los ciclos PDCA (planifica, haz, comprueba o valida, act\u00faa). Crear sendos asset y risk registers. <\/p>\n

ISO 27001 paso 5<\/strong>: curra para solventar todos los gaps detectados. Cubre toda la org: RRHH, finanzas, office facilities, business mgmt, IT… <\/p>\n

ISO 27001 paso 5bis<\/strong>: si alguna \u00e1rea no tiene gaps, busca mejor \ud83d\ude42<\/p>\n

ISO 27001 paso 6<\/strong>: contrata a un consultor cualificado para una prueba de auditoria que har\u00e1n los certificadores. Corrige todos los errores. <\/p>\n

ISO 27001 paso 7<\/strong>: paga las fees de certificaci\u00f3n y recibe a los auditores. Cruza dedos y sonr\u00ede! Si has hecho el trabajo, ir\u00e1 bien. <\/p>\n

Iso 27001 paso 8<\/strong>: una vez certificado, no te duermas en los laureles. Lo dif\u00edcil es mantener el nivel de seguridad. Imprescindible un buen ISMS.<\/p>\n

ISO 27001 paso 9<\/strong>: si quieres hablar con alguien con experiencia positiva reciente, estoy a un email de distancia \ud83d\ude42<\/p>\n","protected":false},"excerpt":{"rendered":"

ISO27001 paso 1: entender que NO es un proyecto de inform\u00e1tica. ISO27001 paso 2: nombrar un SIRO (senior Information & risk officer) que ya est\u00e9 reportando al CEO o director general de la organizaci\u00f3n. ISO27001 paso 3: obtener e interiorizar el ISO27002 (recomendaciones para 272001). Hacer un gap analysis: \u00bfqu\u00e9 hago yo y qu\u00e9 dicta … Seguir leyendo Certificaci\u00f3n ISO27001 en 9 sencillos pasos<\/span> →<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[42,134,141],"tags":[],"_links":{"self":[{"href":"https:\/\/lavigilanta.info\/index.php?rest_route=\/wp\/v2\/posts\/1730"}],"collection":[{"href":"https:\/\/lavigilanta.info\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lavigilanta.info\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lavigilanta.info\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/lavigilanta.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1730"}],"version-history":[{"count":1,"href":"https:\/\/lavigilanta.info\/index.php?rest_route=\/wp\/v2\/posts\/1730\/revisions"}],"predecessor-version":[{"id":1731,"href":"https:\/\/lavigilanta.info\/index.php?rest_route=\/wp\/v2\/posts\/1730\/revisions\/1731"}],"wp:attachment":[{"href":"https:\/\/lavigilanta.info\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1730"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lavigilanta.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1730"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lavigilanta.info\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1730"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}