ExpertsGate Use Cases.

[Audio] MILESTONE PDPL Self Assessment Internal Audit Validation Project Started Milestone 1 Project Scope Assessment Report The scope of services for the PDPL Internal Audit compliance will include the following: Internal Audit Validation for the self-assessment performed by Data Privacy unit: Internal Audit Validation for the Self-Assessment Performed by Data Privacy Unit as per Personal Data Protection Law Milestone 2 Internal Audit Validation for the Self-Assessment Performed by Data Privacy Unit as per Personal Data Protection Law Implementing Regulations PDPL Audit Milestone 3 Project Output Project Objective Review submission Draft report shall be submitted 2 working days in advance of final deadline. Report should be printed in hard copy signed and stamped by company representative. The main objective of this project is conducting the internal audit validation of self-assessment performed by data privacy unit as per Personal Data Protection Law (PDPL) and implementing regulations. This assessment must be submitted to SAMA after internal audit validation. The final report shall be a single document report covering all sections of scope mentioned in this RFP. End of Project Report should include detailed information on risks, impact, and the necessary countermeasures and recommended corrective actions. All reported observations should be accompanied with reference to industry standards or have other evidence..

[Audio] MILESTONE IT Policies and Procedures Project Started Milestone 1 Project Scope Assessment Report Enhance and development for IT service management practice including IT governance based on best practices by: Reviewing and enhancing current IT business processes, SLAs, policies, and procedures. Enhance and development for process documentation and diagrams, forms, templates. Milestone 2 Develop a dashboard using ITSM capabilities to fulfill PB requirements. 2. All practices should be complied with best practices, and will include below processes (not limited to): ITSM Gap Analysis Report Build IT policies and Procedures Service Management Plan Milestone 3 Project Output Project Objective Policy and procedures implementation Review and Enhance IT business processes, SLAs, policies, and procedures. Analyze and document IT business processes, SLAs, policies, and procedures. The objective of PB is to have professional service to assessment and modify the current Processes, SLAs and related services and automation as well as implementation for them to match best practices, and to get a continuous managed service to enhance and update the system according to business needs includes different services. Define and analyze required reports and dashboard and based on PB requirements and do the implementation on ITSM Platform End of Project Review and support IT Governance processes development and enhancement Ensure and monitor the implementation of IT Governance processes and SLAs.

[Audio] MILESTONE Project Started Implementation of IT Governance and ISO 38500 certification Milestone 1 Project Scope Gap Assessment & Planning Milestone 2 Governance System Implementation The standard defines the scope of IT governance and outlines the responsibilities of those involved in directing and controlling IT. Its scope includes: 1. Governance Framework for SAR IT Department: Establishes a model for governance (the **"Governance Model for IT) based on three key tasks: Evaluate, Direct, Monitor 2. SAR IT governance System Applicability 3. Principles of Good IT Governance: Defines six core principles for effective governance: Responsibility, Strategy, Acquisition, Performance, Conformance, and Human Behavior. Milestone 3 Project Output Project Objective Review and External Audit Governance Framework Documentation Establish Governance Framework Strategic Alignment Documents Promote Effective Decision-Making Performance & Compliance Reports Ensure Accountability & Responsibility Decision-Making & Accountability Records Optimize IT Performance & Risk Management Continuous Improvement Plans Support Compliance & Regulatory Requirements Enhance Stakeholder Confidence End of Project.

[Audio] MILESTONE Project Started Implementation of ISO 20000, ISO 22301, ISO 27001, and ISO 27701 Milestone 1 Project Scope Establish, implement, maintain, and continuously improve an Integrated Management System (IMS) covering: Gap Assessment & Planning IT SMS (ISO/IEC 20000), BCMS (ISO 22301), ISMS (ISO/IEC 27001), PIMS (ISO/IEC 27701) Milestone 2 Management Systems Implementation Develop all required policies, procedures, registers, and records to meet standard requirements. Define ISMS scope, Statement of Applicability (SoA), and applicable security and privacy controls. Integrate ISO 20000, ISO 22301, ISO 27001, and ISO 27701 into a unified governance and documentation framework. Conduct internal audits, management reviews, and corrective action management. Prepare Center3 for certification readiness across all applicable standards. Develop and deliver training and awareness materials for relevant staff. Project Output Project Objective Milestone 3 Review and External Audit Integrated Management System documentation. Combined internal audit reports and corrective action plans. Management Review reports. Certification readiness and compliance reports. Training and awareness materials for Center3 staff. End of Project 1. ISO/IEC 20000 – (IT SMS) Implement core ITSM processes and improve service delivery and service quality. Establish Incident, Problem, Change, and CM, etc. Ensure consistent and reliable IT service operations. 2. ISO 22301 – (BCMS) Review all the assessments related to BCMS Align IT Service Continuity with BC objectives. Enhance org resilience through training and awareness. 3. ISO/IEC 27001 & ISO/IEC 27701 – ISMS & PIMS Define ISMS and PIMS scope and governance. Implement security and privacy controls based on risk assessment. Ensure compliance with security and privacy best practices..

[Audio] MILESTONE Implementation of ISO 20000, ISO 22301 Project Started Milestone 1 Project Scope Gap Assessment & Planning To establish, implement, maintain, and continuously improve an integrated IT Service Management (ISO 20000) and Business Continuity Management (ISO 22301) system to ensure reliable IT services and organizational resilience. Documentation & Compliance: Develop required policies, procedures, and records and conduct internal audits and management reviews. Milestone 2 Integration of ISO 20000 & ISO 22301: Management Systems Implementation 1. Combined audit reports and corrective action plans. 2. Training materials for staff. 3. Certification readiness reports. Milestone 3 Project Output Project Objective Review and External Audit 1. Core ITSM Processes Implementation 1. ISO 20000 Service Delivery ITSM Policy & Process Documentation. Incident & Problem Management Service Catalog, SLAs, and Operational Level Agreements (OLAs). Change & Configuration Management Incident, Problem, Change Management workflows. Service Continuity & Availability 2. ISO 22301 Business Impact Analysis (BIA) Report. End of Project 2. ISO 22301 (Business Continuity Management - BCMS) Business Impact Analysis (BIA) & Risk Assessment BCMS Framework Development Business Continuity Plan (BCP) & IT Disaster Recovery Plan (ITDRP). IT Service Continuity Alignment Risk Treatment Plans. Training & Awareness.

[Audio] MILESTONE Project Started Implementation of ISO 20000, ISO 22301, and ISO 27001 Milestone 1 Project Scope Gap Assessment & Planning Establish, implement, maintain, and continually improve an Integrated Management System (IMS) covering: IT SMS (ISO/IEC 20000), BCMS (ISO 22301), and ISMS (ISO/IEC 27001) Milestone 2 Management Systems Implementation Develop all required policies, procedures, processes, records, and registers in accordance with applicable standards. Define the ISMS scope, develop the Statement of Applicability (SoA), and implement applicable information security controls. Integrate ISO 20000, ISO 22301, and ISO 27001 requirements into a unified governance, documentation, and control framework. Conduct internal audits, management reviews, and manage corrective actions across the integrated system. Prepare combined audit reports and consolidated corrective action plans. Develop and deliver training and awareness materials for relevant staff. Support certification readiness through compliance verification and readiness assessment reports Milestone 3 Project Output Project Objective 1. ISO 20000 Review and External Audit 1. Core ITSM Processes Implementation ITSM Policy & Process Documentation. Service Delivery Service Catalog, SLAs, and Operational Level Agreements (OLAs). Incident & Problem Management Incident, Problem, Change Management workflows. Change & Configuration Management 2. ISO 22301 Business Impact Analysis (BIA) Report. 2. ISO 22301 (Business Continuity Management - BCMS) Business Impact Analysis (BIA) & Risk Assessment Business Continuity Plan (BCP) & IT Disaster Recovery Plan (ITDRP). End of Project BCMS Framework Development Risk Treatment Plans. IT Service Continuity Alignment 3. ISMS SOA, scope, policies, and ISMS controls Training & Awareness 3. ISMS SOA, scope, policies, and ISMS controls.

[Audio] MILESTONE Implementation of ISO 22301, and ISO 27001 Project Started Milestone 1 Project Scope Gap Assessment & Planning 1. ISO 27001 (ISMS): Information assets (data, software, hardware, networks). Security controls (access control, encryption, incident management). Risk assessment & treatment for confidentiality, integrity, and availability (CIA). Milestone 2 2. ISO 22301 (BCMS): Critical business processes (e.g., IT services, customer support, supply chain). Management Systems Implementation Business Impact Analysis (BIA) and recovery strategies. Disaster recovery & incident response plans. Milestone 3 Project Output Project Objective 1. ISO 27001: Review and External Audit Risk Assessment & Treatment Plan. Achieve ISO 27001 certification to establish a robust Information Security Management System (ISMS). ISMS Policy & Procedures. Statement of Applicability (SoA). Achieve ISO 22301 certification to implement a Business Continuity Management System (BCMS). Internal Audit & Management Review Reports. Ensure alignment between ISMS and BCMS for integrated risk and resilience management. 2. ISO 22301: Business Impact Analysis (BIA). End of Project Business Continuity Policy & Plans. Comply with legal, regulatory, and contractual requirements. Disaster Recovery & Crisis Management Plans. BCMS Exercise & Test Results..

[Audio] MILESTONE Project Started Implementation of Business Continuity Management System ISO 22301 Milestone 1 Project Scope Gap Assessment & Planning ISO 22301 (BCMS): Critical business processes (e.g., IT services, customer support, supply chain). Business Impact Analysis (BIA) and recovery strategies. Milestone 2 Disaster recovery & incident response plans. Management Systems Implementation Milestone 3 Project Output Project Objective Review and External Audit ISO 22301: Business Impact Analysis (BIA). ISO 22301 (Business Continuity Management - BCMS) Business Impact Analysis (BIA) & Risk Assessment Business Continuity Policy & Plans. BCMS Framework Development Disaster Recovery & Crisis Management Plans. IT Service Continuity Alignment BCMS Exercise & Test Results. Training & Awareness End of Project.

[Audio] MILESTONE Project Started IT Policies and Procedures Milestone 1 Project Scope Assessment Report Enhance and development for IT service management practice including IT governance based on best practices by: Reviewing and enhancing current IT business processes, SLAs, policies, and procedures. Enhance and development for process documentation and diagrams, forms, templates. Develop a dashboard using ITSM capabilities to fulfill PB requirements. Milestone 2 All practices should be complied with best practices, and will include below processes (not limited to): ITSM Gap Analysis Report Build IT policies and Procedures Service Management Plan Milestone 3 Project Output Project Objective Policy and procedures implementation Review and Enhance IT business processes, SLAs, policies, and procedures. Analyze and document IT business processes, SLAs, policies, and procedures. Define and analyze required reports and dashboard and based on PB requirements and do the implementation on ITSM Platform End of Project Review and support IT Governance processes development and enhancement The objective of PB is to have professional service to assessment and modify the current Processes, SLAs and related services and automation as well as implementation for them to match best practices, and to get a continuous managed service to enhance and update the system according to business needs includes different services. Ensure and monitor the implementation of IT Governance processes and SLAs.

[Audio] MILESTONE Project Started Implementation of Business Continuity Management System ISO 22301 Milestone 1 Project Scope Gap Assessment & Planning ISO 22301 (BCMS): Critical business processes (e.g., IT services, customer support, supply chain). Business Impact Analysis (BIA) and recovery strategies. Milestone 2 Disaster recovery & incident response plans. Management Systems Implementation Milestone 3 Project Output Project Objective Review and External Audit ISO 22301: Business Impact Analysis (BIA). ISO 22301 (Business Continuity Management - BCMS) Business Impact Analysis (BIA) & Risk Assessment Business Continuity Policy & Plans. BCMS Framework Development Disaster Recovery & Crisis Management Plans. IT Service Continuity Alignment BCMS Exercise & Test Results. Training & Awareness End of Project.

[Audio] MILESTONE Project Started Enterprise Architecture and Digital transformation Milestone 1 Project Scope Gap Assessment & Planning Milestone 2 Establish EA office Establishing an Enterprise Architecture (EA) Office is a strategic initiative that ensures alignment between IT and business goals, optimizes technology investments, and enhances organizational efficiency. Below is a step-by-step guide to setting up an EA Office: 1. Define the Purpose & Objectives and Secure Executive Sponsorship 2. Establish Governance & Structure and Develop EA Frameworks & Standards 3. Build the EA Team and Engage Stakeholders 4. Create an EA Repository 5. Implement Metrics & KPIs 6. Communicate & Socialize EA 7. Continuously Improve Milestone 3 Project Output Project Objective Review and compliance check EA Office Strategy Align IT with business strategy. EA office operating model Improve interoperability and reduce redundancy. EA office interactive model Optimize costs through rationalized technology investments. Governance Model: Define decision-making authority (e.g., EA Review Board). Organizational Structure: Ensure compliance with industry standards (e.g., TOGAF, COBIT). End of Project Operating Model: Centralized vs. Federated vs. Hybrid..

[Audio] MILESTONE Implementation of Service Management System ISO 20000 Project Started Milestone 1 Project Scope Gap Assessment & Planning To establish, implement, maintain, and continuously improve IT Service Management (ISO 20000) system to ensure reliable IT services. Documentation & Compliance: Develop required policies, procedures, and records and conduct internal audits and management reviews. Milestone 2 Combined audit reports and corrective action plans. Training materials for staff. Certification readiness reports. Management Systems Implementation Milestone 3 Project Output Project Objective Review and External Audit ISO 20000 ITSM Policy & Process Documentation. Core ITSM Processes Implementation Service Delivery Incident & Problem Management Service Catalog, SLAs, and Operational Level Agreements (OLAs). Change & Configuration Management Incident, Problem, Change Management workflows. End of Project.

[Audio] MILESTONE Project Started IT Asset Management System Milestone 1 Project Scope Assessment Report Milestone 2 Design ITAM An IT Asset Management (ITAM) system is designed to track, manage, and optimize an organization's IT assets throughout their lifecycle. This scope document outlines the key components and functionalities of a comprehensive ITAM system. 1. Asset Inventory Management 2. Lifecycle Management 3. Software License Management 4. Hardware Management 5. Financial Management 6. Integration Capabilities 7. Reporting and Analytics Milestone 3 Project Output Project Objective Implement ITAM Asset Tracking & Visibility Inventory & Discovery Reports Cost Optimization & Financial Management Lifecycle Management Documentation Lifecycle Management Compliance & Licensing Reports Compliance & Risk Mitigation Financial & Cost Optimization Reports Security & Risk Management Risk & Security Management Deliverables Operational Efficiency & Productivity Dashboards & Analytics Vendor & Contract Management Integration & Automation Outputs End of Project Reporting & Analytics 8. Policy & Process Documentation Integration with IT Ecosystems Sustainability & Green IT.

[Audio] MILESTONE Project Started Implementation of Service Management System ISO 20000 Milestone 1 Project Scope Gap Assessment & Planning To establish, implement, maintain, and continuously improve IT Service Management (ISO 20000) system to ensure reliable IT services. Documentation & Compliance: Develop required policies, procedures, and records and conduct internal audits and management reviews. Combined audit reports and corrective action plans. Milestone 2 Training materials for staff. Certification readiness reports. Management Systems Implementation Milestone 3 Project Output Project Objective Review and External Audit Core ITSM Processes Implementation Service Delivery ISO 20000 ITSM Policy & Process Documentation. Incident & Problem Management Change & Configuration Management Service Catalog, SLAs, and Operational Level Agreements (OLAs). Incident, Problem, Change Management workflows. End of Project.

[Audio] MILESTONE Project Started Implementation of Service Management System ISO 20000 Milestone 1 Project Scope Gap Assessment & Planning To establish, implement, maintain, and continuously improve IT Service Management (ISO 20000) system to ensure reliable IT services. Documentation & Compliance: Develop required policies, procedures, and records and conduct internal audits and management reviews. Combined audit reports and corrective action plans. Milestone 2 Training materials for staff. Certification readiness reports. Management Systems Implementation Milestone 3 Project Output Project Objective Review and External Audit ISO 20000 ITSM Policy & Process Documentation. Core ITSM Processes Implementation Service Delivery Incident & Problem Management Service Catalog, SLAs, and Operational Level Agreements (OLAs). Change & Configuration Management Incident, Problem, Change Management workflows. End of Project.

[Audio] MILESTONE Project Started Implementation of Service Management System ISO 20000 Milestone 1 Project Scope Gap Assessment & Planning To establish, implement, maintain, and continuously improve IT Service Management (ISO 20000) system to ensure reliable IT services. Documentation & Compliance: Develop required policies, procedures, and records and conduct internal audits and management reviews. Combined audit reports and corrective action plans. Milestone 2 Training materials for staff. Certification readiness reports. Management Systems Implementation Milestone 3 Project Output Project Objective Review and External Audit Core ITSM Processes Implementation Service Delivery ISO 20000 ITSM Policy & Process Documentation. Incident & Problem Management Change & Configuration Management Service Catalog, SLAs, and Operational Level Agreements (OLAs). Incident, Problem, Change Management workflows. End of Project.

[Audio] MILESTONE Project Started Implementation of ISO 20000, ISO 22301, and ISO 27001, ISO 27701 Milestone 1 Project Scope Gap Assessment & Planning Milestone 2 Management Systems Implementation Establish, implement, maintain, and continually improve an Integrated Management System (IMS) covering IT Service Management, Business Continuity, Information Security, and Privacy Information Management. Define system scopes, boundaries, and applicability for ISO/IEC 20000, ISO 22301, ISO/IEC 27001, and ISO/IEC 27701. Conduct gap assessments to identify missing requirements and implementation gaps across all standards. Develop and implement required policies, procedures, processes, and records. Integrate requirements of all standards into a unified governance and documentation framework. Conduct internal audits, management reviews, and corrective action management. Prepare the organization for certification readiness across all applicable standards. Project Output Project Objective Milestone 3 Review and External Audit Integrated Management System documentation. Combined internal audit reports and corrective action plans. Management Review reports. Certification readiness and compliance reports. Training and awareness materials for their staff. End of Project 1. ISO/IEC 20000 – (IT SMS) Implement core ITSM processes and improve service delivery and service quality. Establish Incident, Problem, Change, and CM, etc. Ensure consistent and reliable IT service operations. 2. ISO 22301 – (BCMS) Review all the assessments related to BCMS Align IT Service Continuity with BC objectives. Enhance org resilience through training and awareness. 3. ISO/IEC 27001 & ISO/IEC 27701 – ISMS & PIMS Define ISMS and PIMS scope and governance. Implement security and privacy controls based on risk assessment. Ensure compliance with security and privacy best practices..

[Audio] MILESTONE IT Policies and Procedures Project Started Milestone 1 Project Scope Assessment Report Enhance and development for IT service management practice including IT governance based on best practices by: Reviewing and enhancing current IT business processes, SLAs, policies, and procedures. Enhance and development for process documentation and diagrams, forms, templates. Develop a dashboard using ITSM capabilities to fulfill PB requirements. Milestone 2 All practices should be complied with best practices, and will include below processes (not limited to): ITSM Gap Analysis Report Build IT policies and Procedures Service Management Plan Milestone 3 Project Output Project Objective Policy and procedures implementation Review and Enhance IT business processes, SLAs, policies, and procedures. Analyze and document IT business processes, SLAs, policies, and procedures. The objective of PB is to have professional service to assessment and modify the current Processes, SLAs and related services and automation as well as implementation for them to match best practices, and to get a continuous managed service to enhance and update the system according to business needs includes different services. Define and analyze required reports and dashboard and based on PB requirements and do the implementation on ITSM Platform End of Project Review and support IT Governance processes development and enhancement Ensure and monitor the implementation of IT Governance processes and SLAs.

[Audio] MILESTONE Project Started Implementation of IT Governance and ISO 38500 certification Milestone 1 Project Scope Gap Assessment & Planning 1. IT Governance Implementation Assess current IT governance practices Define governance framework, roles, and decision structure Align IT strategy with MoT objectives Milestone 2 2. ISO/IEC 38500 Certification Assess readiness against ISO/IEC 38500 Governance System Implementation Map governance practices to ISO principles Prepare documentation and certification evidence Milestone 3 Project Output Project Objective Review and External Audit 1. IT Governance Implementation Improve IT decision-making and accountability 1. IT Governance Implementation IT governance framework and policies Roles, responsibilities, and governance KPIs Ensure IT delivers business value 2. ISO/IEC 38500 Certification Achieve compliance with ISO/IEC 38500 2. ISO/IEC 38500 Certification ISO/IEC 38500 gap assessment Compliance documentation and readiness report End of Project Formalize and validate IT governance practices.

[Audio] MILESTONE Project Started Implementation of Service Management System ISO 20000 Milestone 1 Project Scope Gap Assessment & Planning To establish, implement, maintain, and continuously improve IT Service Management (ISO 20000) system to ensure reliable IT services. Documentation & Compliance: Develop required policies, procedures, and records and conduct internal audits and management reviews. Combined audit reports and corrective action plans. Milestone 2 Training materials for staff. Certification readiness reports. Management Systems Implementation Milestone 3 Project Output Project Objective Review and External Audit ISO 20000 ITSM Policy & Process Documentation. Core ITSM Processes Implementation Service Delivery Incident & Problem Management Service Catalog, SLAs, and Operational Level Agreements (OLAs). Change & Configuration Management Incident, Problem, Change Management workflows. End of Project.

[Audio] MILESTONE Project Started IT Business Continuity Management (ITBCM) and Disaster Recovery Milestone 1 Project Scope BCM/ERM Assessment Identify the critical business processes, systems, and infrastructure that need to be included in the ITBCM plan. Conduct a risk assessment: Identify potential risks and threats to IT systems and infrastructure. Business Impact Analysis (BIA). Business Continuity Strategies. Milestone 2 Create a Business Continuity Plan (BCP). Disaster Recovery Plan Development. BIA,BCS,BCP,DRP Development Testing Scenarios and Reports. Milestone 3 Project Output Project Objective Enhanced Service Availability. Business Continuity Plan (BCP). Minimize Downtime. Disaster Recovery Plan. BCP Testing and Continual improvement. Training & Knowledge transfer. Ensure Data Integrity. Risk Assessment Report. Maintain Business Continuity. Business Impact Analysis (BIA) Report. Meet Regulatory Requirements. IT Infrastructure Resilience. Data Backup and Recovery Procedures. End of Project Emergency Response Procedures. Training and Awareness Programs. Testing and Exercise Reports..

[Audio] MILESTONE Project Started SABIC Partnership and Compliance Program Milestone 1 Project Scope Assessment, Identify GAPs ,Developing the Action Plan. As SABIC (Saudi Basic Industries Corporation) is a Saudi Arabian multinational chemical manufacturing company. It is one of the largest chemical companies in the world and a leading producer of chemicals, polymers, and fertilizers. Milestone 2 The company is seeking to apply all required standards to comply with SABIC's requirements, including information security, management methodology, international accreditations, and employee evaluation. Implement Actions, Process Development, Training Provision, Review and Evaluate Progress Milestone 3 Project Output Project Objective Registration Completed. Is to achieve compliance and registration as a vendor with SABIC. Submit the Compliance Documents & Evidences to SABIC, Conduct the External Audit Session. End of Project.

[Audio] MILESTONE Project Started Reassessing Project Management Department and Establishing a PMO Milestone 1 Project Scope Assessment Report Reviewing current project management processes, procedures, and policies. Evaluating the department's structure, roles, and responsibilities. Assessing project delivery methodologies and tools. Analyzing performance metrics, reporting, and governance. Identifying areas for improvement, best practices, and opportunities for standardization. Milestone 2 Developing recommendations for enhancements, process improvements, and potential restructuring. Establishing PMO Defining the role and responsibilities of a Project Management Office (PMO). Developing the PMO's structure, roles, and responsibilities. Developing governance and reporting frameworks. Providing training and support for project managers and teams. Milestone 3 Project Output Project Objective Training & Knowledge Transfer Improve project delivery efficiency and effectiveness. PMO charter outlining purpose, scope, and responsibilities. Project management framework and methodology. Identify and address gaps in current project management practices. Standardized project templates, tools, and processes. Optimize resource utilization and reduce project risks. Governance structure and decision-making framework. Performance metrics and reporting dashboards. Align project management with organizational strategic objectives. Project portfolio management framework. End of Project Provide centralized governance and oversight of projects. Training and support plans for project managers and teams. Improve project success rates and overall organizational performance. Enhance project reporting, monitoring, and control. Documented processes for project initiation, planning, execution, monitoring, and closure..

[Audio] MILESTONE Project Started Implementation of ISO 20000 for BSO's IT Department Milestone 1 Project Scope Gap Assessment Report Conducting a gap assessment of BSO's existing IT service management practices against ISO/IEC 20000-1. Identifying missing processes, controls, and documentation needed for compliance. Mapping current IT service processes to ISO 20000 requirements. Standardizing service design, transition, delivery, and improvement processes. Milestone 2 Updating incident, change, problem, and service continuity processes. Developing missing procedures, registers, and evidence records. Process Standardization Enhancing governance mechanisms for IT service delivery. Training IT teams on ISO 20000 practices and tools. Establishing a continuous improvement roadmap for IT service management maturity. Milestone 3 Project Output Project Objective Implementation & Adoption ISO 20000 Gap Assessment Report. Close gaps between existing IT service management practices and ISO 20000 requirements. Updated ITSM framework aligned with ISO/IEC 20000-1. Improve service consistency, reliability, and availability. Standard procedures for service design, transition, delivery, and improvement. Strengthen governance over IT services and service delivery performance. Enhanced incident, change, problem, and continuity processes. Enhance incident resolution, change management, and risk control. Competency development and training package. Improve customer satisfaction through structured End of Project Evidence package showing closure of missing elements for ISO 20000 alignment. Build competency of IT teams through training and knowledge transfer and enable continuous maturity and long-term improvement..

[Audio] MILESTONE Project Started Implementation of ISO 38500 for BSO's IT Department Milestone 1 Project Scope Gap Assessment Report Conducting a gap assessment of BSO's current IT governance practices against ISO/IEC 38500. Identifying missing governance principles and structural requirements. Mapping existing governance mechanisms to ISO 38500 principles. Aligning strategic IT planning with ISO 38500 guidance. Establishing clear roles and responsibilities for IT decision-making. Milestone 2 Developing required policies, processes, and governance controls. Implementing performance measurement and reporting dashboards. Enhancing risk, compliance, and IT asset management practices. Governance Framework Alignment Training leadership and IT teams on ISO 38500 principles. Establishing a continuous governance improvement roadmap. Milestone 3 Project Output Project Objective Close gaps between existing IT governance practices and ISO 38500 requirements. ISO 38500 Gap Assessment Report. Awareness & Adoption Strengthen IT governance and strategic alignment with business objectives. Updated IT governance framework aligned with ISO/IEC 38500. Defined governance model and decision-making structure. Enhance accountability, transparency, and responsibility in IT decisions. IT governance policies, procedures, and control mechanisms. Roles and responsibilities for IT decision-makers documented. Improve monitoring and evaluation of IT investments and performance. Governance maturity roadmap and improvement plan. End of Project Reduce risks related to IT services, assets, and digital initiatives. Leadership training material on ISO 38500 principles. Build governance competencies across IT and leadership teams. Support long-term value creation through effective IT governance. Evidence package showing closure of missing elements for ISO 38500 alignment. ISO 38500 Alignment Completed (Evidence package prepared) Enable continuous maturity and sustainable governance improvements..

[Audio] MILESTONE ITIL Standards Project Started Milestone 1 Project Scope Current State Assessment and Requirements Gathering The scope of this project is to develop comprehensive ITIL Standards that define the full guidelines for managing IT services. These standards will outline best practices across the entire service lifecycle—including strategy development, service design, service transition, service operation, and continual improvement. Milestone 2 Drafting Standards Milestone 3 Project Output Project Objective Review & Validation ITIL General Management Standard Organizational governance. planning ,and continuous improvement Service management Standard Milestone 4 The objective is to ensure that all IT services are planned, delivered, supported, and optimized in a consistent and efficient manner, fully aligned with business objectives, regulatory requirements, and organizational value goals.. Align IT services with business needs Approval & Sign-Off Managing and delivering IT services effectively and efficiently Improve service quality Technical management Standard Enhance customer satisfaction Increase efficiency and reduce costs Ensure effective risk and change management Including deployment infrastructure and software development activities End of Project Support continuous improvement.

[Audio] MILESTONE Project Started Implementation of ISO 21502 for SAR's IT Department Kick-off & Scope Definition Milestone 1 Project Scope Gap Assessment Report Reviewing SAR IT PMO practices to identify gaps against ISO 21502. Mapping existing processes, templates, and reports to ISO 21502 requirements. Identifying missing elements and improvement areas in current PMO structure. Standardizing the project lifecycle processes to meet ISO 21502 guidance. Milestone 2 Updating governance mechanisms and decision-making roles. Implementing missing templates, registers, and documentation controls. Training PMO team and project managers on the ISO 21502 framework. Development of missing processes Developing a continuous improvement roadmap for PMO maturity Milestone 3 Project Output Project Objective Gap assessment report comparing PMO practices to ISO 21502. Identify missing elements required to meet with ISO 21502. Training & Knowledge Transfer Updated PMO framework aligned with ISO 21502 guidance. Close gaps and strengthen SAR IT PMO capabilities. Standardized project lifecycle for Initiation, Planning, Delivery, Evaluation, and Closure. Enhance governance, transparency, and accountability in project delivery. Newly developed templates, registers, and reporting structures (ex. QMP,). Standardize processes across the existing IT PMO for consistent execution. Improved governance structure and defined responsibilities. Continuous improvement plan and maturity development roadmap. End of Project Support strategic priorities through structured project management. Enable continuous improvement through clear maturity roadmap. Training material and awareness sessions for PMO and IT project teams. Build internal capability through training and knowledge transfer. Evidence package showing how missing elements were addressed for ISO 21502 alignment..

[Audio] MILESTONE Project Started Internal Audit Project ISO/IEC 27001, ISO/IEC 27701 & ISO 22301 Audit Planning & Scope Confirmation Milestone 1 Project Scope 1. ISO/IEC 27001 – ISMS Internal Audit Review ISMS scope, policies, and controls Assess compliance with ISO/IEC 27001 requirements Document Review (Policies, procedures, plans, and records) 2. ISO/IEC 27701 – PIMS Internal Audit Review PIMS scope and privacy controls Milestone 2 Assess compliance with ISO/IEC 27701 requirements 3. ISO 22301 – BCMS Internal Audit Review BCMS framework, BIA, and continuity plans Internal Audit Execution (ISMS, PIMS, and BCMS audits) Assess compliance with ISO 22301 requirements Milestone 3 Project Output Project Objective 1. ISO/IEC 27001, ISO/IEC 27701, and ISO 22301: 1. ISMS & PIMS Verify effectiveness of information security and privacy controls ISMS, PIMS, and BCMS Internal Audit Report Identify nonconformities and improvement opportunities Audit Findings & Reporting (Nonconformities and observations) Nonconformity and corrective action records for ISO 27001 Privacy control findings and actions for ISO 27701 BIA/BCP audit findings and actions for ISO 22301 2. BCMS Verify readiness of business continuity arrangements Ensure continuity plans meet standard requirements Integrated Outputs Consolidated internal audit summary Corrective action plan Corrective Action Plan & Management Review Input Management review input.

[Audio] MILESTONE Project Started Enterprise Architecture and Digital transformation Milestone 1 Project Scope Gap Assessment & Planning Milestone 2 Establish EA office Establishing an Enterprise Architecture (EA) Office is a strategic initiative that ensures alignment between IT and business goals, optimizes technology investments, and enhances organizational efficiency. Below is a step-by-step guide to setting up an EA Office: 1. Define the Purpose & Objectives and Secure Executive Sponsorship 2. Establish Governance & Structure and Develop EA Frameworks & Standards 3. Build the EA Team and Engage Stakeholders 4. Create an EA Repository 5. Implement Metrics & KPIs 6. Communicate & Socialize EA 7. Continuously Improve Milestone 3 Project Output Project Objective Review and compliance check EA Office Strategy Align IT with business strategy. EA office operating model Improve interoperability and reduce redundancy. EA office interactive model Optimize costs through rationalized technology investments. Governance Model: Define decision-making authority (e.g., EA Review Board). Organizational Structure: Ensure compliance with industry standards (e.g., TOGAF, COBIT). End of Project Operating Model: Centralized vs. Federated vs. Hybrid..

[Audio] MILESTONE Project Started Audit as A service Audit Planning & Scope Definition Milestone 1 Project Scope Document & Evidence Review Review IT policies, procedures, processes, and controls. Verify compliance with applicable standards, frameworks, and internal requirements. Assess effectiveness of IT governance, service management, and project management controls. Milestone 2 Review audit evidence, records, and reporting mechanisms. Support audit coordination and closure activities. Audit Execution (Internal / External IT Audit) Milestone 3 Project Output Project Objective Audit Findings & Reporting Internal IT audit report. External IT audit support and findings report. Ensure compliance with SAR IT Management requirements. Nonconformity, observation, and OFI records. Corrective action plan and follow-up actions. Identify nonconformities, risks, and improvement opportunities. Audit closure and management review inputs. Strengthen IT controls, governance, and accountability. Support readiness for internal and external audits. Corrective Actions & Audit Closure.

[Audio] MILESTONE Project Started Implementation of Service Management System ISO 20000 Milestone 1 Project Scope Gap Assessment & Planning To establish, implement, maintain, and continuously improve IT Service Management (ISO 20000) system to ensure reliable IT services. Documentation & Compliance: Develop required policies, procedures, and records and conduct internal audits and management reviews. Combined audit reports and corrective action plans. Milestone 2 Training materials for staff. Certification readiness reports. Management Systems Implementation Milestone 3 Project Output Project Objective Review and External Audit Core ITSM Processes Implementation Service Delivery ISO 20000 ITSM Policy & Process Documentation. Incident & Problem Management Change & Configuration Management Service Catalog, SLAs, and Operational Level Agreements (OLAs). Incident, Problem, Change Management workflows. End of Project.

[Audio] MILESTONE Project Started Implementation of Business Continuity Management System ISO 22301 Milestone 1 Project Scope Gap Assessment & Planning Milestone 2 Management Systems Implementation ISO 22301 (BCMS): Establish, implement, maintain, and continually improve a Business Continuity Management System. Define system scopes, boundaries, and applicability for ISO 22301. Conduct gap assessments to identify missing requirements and implementation gaps across all standards. Develop and implement required policies, procedures, processes, and records. Perform risk assessments, Business Impact Analysis (BIA), and risk treatment planning. Establish performance monitoring, KPIs, and reporting mechanisms. Conduct internal audits, management reviews, and corrective action management. Prepare the organization for certification readiness across all applicable standards. Milestone 3 Project Output Project Objective Review and External Audit ISO 22301 (Business Continuity Management - BCMS) Business Impact Analysis (BIA) & Risk Assessment BCMS Framework Development IT Service Continuity Alignment Training & Awareness ISO 22301: Business Impact Analysis (BIA) Report. Business Continuity Plan (BCP). IT Disaster Recovery Plan (ITDRP). Risk assessment and treatment plans. BCMS testing and exercise records. End of Project.