Role of ITIL-Based Configuration Management in Enforcing ISO 27001 Compliance

Certificate: View Certificate

Published Paper PDF: View PDF

Confirmation Letter: View

Dr. Daksha Borada

IILM University, Greater Noida, Uttar Pradesh 201306

d.borada@iilm.edu

Abstract— This manuscript explores the integration of ITIL-based Configuration Management within the framework of ISO 27001 to enhance information security management systems (ISMS). By aligning ITIL’s service management practices with ISO 27001’s security controls, organizations can achieve a structured approach to managing information security risks. The study examines case studies, methodologies, and results to demonstrate the effectiveness of this integration in enforcing ISO 27001 compliance.

Keywords

ITIL, Configuration Management, ISO 27001, Information Security Management System, Compliance, Service Management, Risk Management, Case Study, Methodology, Result

References

• Sheikhpour, R., & Modiri, N. (2012). A best practice approach for integration of ITIL and ISO/IEC 27001 services for information security management. Indian Journal of Science and Technology, 5(2).
• Gunawan, N. K., Hadiprakoso, R. B., & Kabetta, H. (2020). Comparative study between the integration of ITIL and ISO/IEC 27001 with the integration of COBIT and ISO/IEC 27001. IOP Conference Series: Materials Science and Engineering, 852, 012128.
• Intertek. (2022). Implementing an ISMS ISO/IEC 27001:2022 – Case Study. Retrieved from https://www.scribd.com/document/745036072/I14-1-GL-Implement-ISO-27001-2022-Case-Study-V1-Oct-2022-sample-case-study
• Gunawan, N. K., Hadiprakoso, R. B., & Kabetta, H. (2020). Integration of ITIL V3, ISO 20000 & ISO 27001:2013 for IT services and security management system. International Journal of Advanced Trends in Computer Science and Engineering, 9(5), 7257-7263.
• Sheikhpour, R., & Modiri, N. (2012). A best practice approach for integration of ITIL and ISO/IEC 27001 services for information security management. Indian Journal of Science and Technology, 5(2).
• Gunawan, N. K., Hadiprakoso, R. B., & Kabetta, H. (2020). Comparative study between the integration of ITIL and ISO/IEC 27001 with the integration of COBIT and ISO/IEC 27001. IOP Conference Series: Materials Science and Engineering, 852, 012128.
• Intertek. (2022). Implementing an ISMS ISO/IEC 27001:2022 – Case Study. Retrieved from https://www.scribd.com/document/745036072/I14-1-GL-Implement-ISO-27001-2022-Case-Study-V1-Oct-2022-sample-case-study
• Gunawan, N. K., Hadiprakoso, R. B., & Kabetta, H. (2020). Integration of ITIL V3, ISO 20000 & ISO 27001:2013 for IT services and security management system. International Journal of Advanced Trends in Computer Science and Engineering, 9(5), 7257-7263.
• Sheikhpour, R., & Modiri, N. (2012). A best practice approach for integration of ITIL and ISO/IEC 27001 services for information security management. Indian Journal of Science and Technology, 5(2).
• Gunawan, N. K., Hadiprakoso, R. B., & Kabetta, H. (2020). Comparative study between the integration of ITIL and ISO/IEC 27001 with the integration of COBIT and ISO/IEC 27001. IOP Conference Series: Materials Science and Engineering, 852, 012128.