Learn about information security management from the organization that published the original standards!
An ISMS is a risk management approach to maintaining the confidentiality, integrity and availability of the organization’s information. This one-day, exercise-based course is designed to promote awareness of
- The objectives and benefits of information security
- The requirements of ISO 27001 for ISMS establishment, implementation, operation,
monitoring, review, maintenance and improvement
- The advice of ISO 27002 on information security controls
- An insight into the emerging ISO 27000 series of standards
Benefits To Your Business
In the modern business environment, all of your employees have some level of access to your business-critical information; and so all employees should be involved in protecting it. You will learn about
- The business objectives of information security management
- International best practice in information security management
- Application of security controls to manage risks to your information
- The Plan-Do-Check-Act process model for maintaining security
- The difference between compliance and certification
- The future direction of international standards for information security
Course Structure
- Introduction to information security management systems (ISMS)
- Objectives of an ISMS
- Code of practice ISO 27002:2005
- Certification specification ISO 27001:2005
- ISO 27001:2005 ISMS implementation methodology
- Certification to ISO 27001:2005
- The ISO 27000 series of standards
Who Should Attend?
This is not a technical IT security course; it is about information security management. It is suitable for executives and managers from a wide range of disciplines, and should be attended by a broad range of employees from your organization.
Next steps
For more information, please contact us or complete our training enquiry form.
