Course Description
This “ISO/IEC 27001 – Information Security Management System Implementation” course provides an overview of the latest techniques and examines issues surrounding Information Security Management System (ISMS). This course details the requirements for implementing a formal management system as specified in ISO/IEC 27001 and outlines information security issues including methods of control and countermeasures for threats. Experienced instructors lead students to help them understand the processes required to implement and manage information security. Exercises and discussions teach students how to implement controls and how to integrate ISMS activities with business and other security objectives.
Learning Objectives
- Understand the Specific Requirements for an ISMS
- Identify Uses of ISMS Controls
- Determine and Assess Risk to Information Security
- Determine the Value of Information Assets
- Understand the Design and Implementation of an ISMS
- Understand Definitions of Policies, Standards, and Procedures
- Recognize the Importance of Auditing and Reviewing an ISMS
- Understand ISMS Documentation
- Understand the Implementation Process
Course Materials Provided
Students receive comprehensive course manuals with reference materials, including:
- Copy of ISO/IEC 27002
- Copy of ISO/IEC 27001
Who Should Attend
- IT Security Officers
- IT Managers
- Management Systems Managers
- Professionals involved in introducing ISO/IEC 27002 and ISO/IEC 27001:2005 into an organization
- Chief Security Officers
- Information Security Consultants
Prerequisite
A prior review of ISO/IEC 27002, ISO/IEC 27001 and knowledge of information security practices is strongly suggested.
Students should note that the course does require evening work.
Duration: 3 Days
Price: $10,000 (for up to 15 people)
Public Course: $1,495 per person