How to leverage ISO 9001 Risk Management for ISO 27001 compliance

Risk management is an essential component of a management system. Companies involved in manufacturing are required to identify and assess risks with respect to QMS to be compliant with clause 6.1 of ISO 9001. Information security management also requires risk management, but in this case, we need to identify risks that can impact the security of company and client information. In this session, we will show how the risk management process already established for QMS can be extended to comply with the requirements of ISO 27001. We will take some practical examples of QMS risks and demonstrate how the additional requirements, like applying controls from Statement of Applicability to mitigate for ISMS. 

Webinar presenter

Neelov Kar
Neelov has 25 years of IT experience. He started his IT career in CMC, ex-IBM, and during this time he has implemented several large projects to protect IT security and safety in Coal mines in India. Later on he functioned as Executive Director of Digital Technologies and Vice President of RS Software. He moved to USA to implement Y2K for several large corporations in the US. He has been working as Account Manager (Client Executive) in Dell Services/ Perot Systems from 1999 till 2012, where he has been instrumental in opening new accounts and managing and expanding existing accounts at different client sites with different technologies and domain expertise. As an Account Manager/ Program Manager he has implemented multiple large projects on mainframe and client server environment.  Currently, he is Information Security/ Data Privacy Auditor engaged with multiple registrars like BSI, DQS, SGS and CIRQ.