ISO 27001 ISMS Implementation Master Class

The course is designed for people who have a good understanding of ISO 27001 and ISO 17799: 2005 Information security management systems also staff tasked with the implementation and management of a ISO 27001: 2005 Information security management system and Information security consultants.

The objective of this course is to provide delegates with the necessary skills to implement an ISMS that is compliant with the requirements of ISO 17799 and meets the certification requirements of ISO 27001. The ISMS course will provide delegates with a framework for implementation.

 

Course Contents:

Background to information Security

Determination of scope and information security policy

Identification of information assets

Determination of the value of information assets

Determination of risk and impacts

Identification of control objective policies

Production and implementation of policies, standards and procedures

Completion of ISMS documentation requirements

Awareness training

Certification process

Production of an ISMS Project Implementation Plan

An understanding of ISO27001 Principals.

An Information Security Management System (ISMS) is a controlled approach to managing sensitive company information so that it remains secure. It encompasses people, processes and Information Management Security Systems.

ISO/IEC 27001 sets out the requirements for an Information Security Management System (ISMS) and the Plan-Do-Check-Act security management cycle. The Annex A of the standard provides a comprehensive set of 133 information security controls regarding 11 aspects of security areas for any organization.

None