{"id":364011,"date":"2024-10-20T01:48:35","date_gmt":"2024-10-20T01:48:35","guid":{"rendered":"https:\/\/pdfstandards.shop\/product\/uncategorized\/bsi-21-30398709-dc\/"},"modified":"2024-10-26T02:51:25","modified_gmt":"2024-10-26T02:51:25","slug":"bsi-21-30398709-dc","status":"publish","type":"product","link":"https:\/\/pdfstandards.shop\/product\/publishers\/bsi\/bsi-21-30398709-dc\/","title":{"rendered":"BSI 21\/30398709 DC"},"content":{"rendered":"

This document provides guidance on the integrated implementation of ISO\/IEC 27001<\/span><\/span> and ISO\/IEC 20000-1<\/span><\/span> for those organizations that are intending to either<\/p>\n

    \n
  1. \n

    implement ISO\/IEC 27001<\/span><\/span> when ISO\/IEC 20000-1<\/span><\/span> is already implemented, or vice versa,<\/p>\n<\/li>\n

  2. \n

    implement both ISO\/IEC 27001<\/span><\/span> and ISO\/IEC 20000-1<\/span><\/span> together, or<\/p>\n<\/li>\n

  3. \n

    integrate existing management systems based on ISO\/IEC 27001<\/span><\/span> and ISO\/IEC 20000-1<\/span><\/span>.<\/p>\n<\/li>\n<\/ol>\n

    This document focuses exclusively on the integrated implementation of an information security management system (ISMS) as specified in ISO\/IEC 27001<\/span><\/span> and a service management system (SMS) as specified in ISO\/IEC 20000-1<\/span><\/span>. In practice, ISO\/IEC 27001<\/span><\/span> and ISO\/IEC 20000-1<\/span><\/span> can also be integrated with other management system standards, such as ISO 9001<\/span><\/span> and ISO 14001<\/span><\/span>.<\/p>\n

    Annex A<\/span> of this document provides a comparison of content at a clause level between ISO\/IEC 27001<\/span><\/span> and ISO\/IEC 20000-1<\/span><\/span>.<\/p>\n

    Annex B<\/span> of this document provides a comparison of topics between the requirements specified in ISO\/IEC 20000-1<\/span><\/span> and the controls in ISO\/IEC 27001<\/span>, Annex A<\/span>.<\/p>\n

    Annex C<\/span> of this document provides a comparison of:<\/p>\n