Commented [DK1]: To learn how to fill in this document see:

Video tutorial: How To Set Up ISO 27001 Project - Writing the

Project Plan http://www.iso27001standard.com/how-to-set-up-iso-
27001-project-writing-the-project-plan
** FREE PREVIEW VERSION ** Commented [DK2]: To learn how to organize a project, read
these articles:
- ISO 27001 project – How to make it work
http://www.iso27001standard.com/blog/2013/04/22/iso-27001-
project-how-to-make-it-work/
- Who should be your project manager for ISO 27001/ISO 22301?
http://www.iso27001standard.com/blog/2014/12/01/who-should-
be-your-project-manager-for-iso-27001-iso-22301/

[organization logo] Commented [DK3]: All fields in this document marked by

square brackets [ ] must be filled in.
[organization name]

PROJECT PLAN
Commented [DK4]: Or "Business Continuity"
for Implementation of the Information Security Management
System

Code: Commented [DK5]: The document coding system should be in

line with the organization's existing system for document coding; in
case such a system is not in place, this line may be deleted.
Version:

Date of version:

Created by:

Approved by:

Confidentiality level:

©2015 This template may be used by clients of EPPS Services Ltd. www.iso27001standard.com in accordance with the License Agreement.
[organization name] [confidentiality level]

Change history
Date Version Created by Description of change

YYYY-MM- 0.1 Dejan Kosutic Basic document outline

DD

Table of contents
1. PURPOSE, SCOPE AND USERS ..............................................................................................................3

2. REFERENCE DOCUMENTS ....................................................................................................................3

3. ISMS IMPLEMENTATION PROJECT .......................................................................................................3

3.1. PROJECT OBJECTIVE ..................................................................................................................................... 3

3.2. PROJECT RESULTS ....................................................................................................................................... 3
3.3. DEADLINES ................................................................................................... ERROR! BOOKMARK NOT DEFINED.
3.4. PROJECT ORGANIZATION ................................................................................. ERROR! BOOKMARK NOT DEFINED.
3.4.1. Project sponsor ............................................................................... Error! Bookmark not defined.
3.4.2. Project manager.............................................................................. Error! Bookmark not defined.
3.4.3. Project team .................................................................................... Error! Bookmark not defined.
3.5. MAIN PROJECT RISKS ...................................................................................... ERROR! BOOKMARK NOT DEFINED.
3.6. TOOLS FOR PROJECT IMPLEMENTATION, REPORTING ............................................. ERROR! BOOKMARK NOT DEFINED.

4. MANAGING RECORDS KEPT ON THE BASIS OF THIS DOCUMENT .........ERROR! BOOKMARK NOT DEFINED.

5. VALIDITY AND DOCUMENT MANAGEMENT........................................ERROR! BOOKMARK NOT DEFINED.

Project Plan for ISMS [BCMS] Implementation ver [version] from [date] Page 2 of 3

©2015 This template may be used by clients of EPPS Services Ltd. www.iso27001standard.com in accordance with the License Agreement.
[organization name] [confidentiality level]

1. Purpose, scope and users

The purpose of the Project Plan is to clearly define the objective of the Information Security
Management System (ISMS) implementation project, documents to be written, deadlines, and roles Commented [DK6]: Or "Business Continuity Management
System (BCMS)"
and responsibilities in the project.

The Project Plan is applied to all activities performed in the ISMS implementation project. Commented [DK7]: Or BCMS

Users of this document are members of [top management] and members of the project team.

2. Reference documents
 ISO/IEC 27001 standard
 ISO 22301 standard
 BS 25999-2 standard
 [decision or any similar document prescribing project launching] Commented [DK8]: To be included only if such a document
exists.
 [methodology for project management]
Commented [DK9]: To be included only if such a document
exists - in that case this Project Plan must be aligned with the
methodology.

3. ISMS implementation project Commented [DK10]: Or BCMS

3.1. Project objective

To implement the Information Security Management System in accordance with the ISO 27001 Commented [DK11]: Or "Business Continuity"
standard by [date] at the latest. Commented [DK12]: Or ISO 22301/BS 25999-2

3.2. Project results

During the ISMS implementation project, the following documents (some of which contain Commented [DK13]: Delete this whole paragraph if the project
refers only to business continuity management.
appendices that are not expressly stated here) will be written:

** END OF FREE PREVIEW **

To download full version of this document click here:

http://www.iso27001standard.com/free-downloads/

Project Plan for ISMS [BCMS] Implementation ver [version] from [date] Page 3 of 3

©2015 This template may be used by clients of EPPS Services Ltd. www.iso27001standard.com in accordance with the License Agreement.