+8801777758855-56

BACK


Training Schedule

Duration: Two (2) Days

Who should attend?

  • Members of an information security team
  • IT Professionals wanting to gain a comprehensive knowledge of the main processes of an Information Security Management System (ISMS)
  • Staff involved in the implementation of the ISO 27001 standard
  • Technicians involved in operations related to an ISMS
  • Auditors
  • CxO and Senior Managers responsible for the IT governance of an enterprise and the management of its risks

Learning objectives

  • To Understand the implementation of an Information Security Management System in accordance with ISO27001
  • To Understand the relationship between an Information Security Management System, including risk management, controls and compliance with the requirements of different stakeholders of the organization
  • To Know the concepts, approaches, standards, methods and techniques allowing to effectively manage an Information Security Management System
  • To Acquire the necessary Knowledge to contribute in implementing an Information Security Management System (ISMS) as specified in ISO 27001

Course Outline

Day 1:

  • Introduction to the ISO 27000 family of standards
  • Introduction to management systems and the process approach
  • Fundamental principles information security
  • General requirements: presentation of the clauses 4 to 8 of ISO 27001
  • Implementation phases of ISO 27001 framework
  • Continual improvement of Information Security
  • Conducting an ISO 27001 certification audit

Day 2:

  • Principles and design of information security controls
  • Documentation of an information security control environment
  • Monitoring and reviewing the information security controls
  • Examples of implementation of information security controls based on ISO 27002 best practices
  • Certified ISO/IEC 27001 Foundation exam

Prerequisites None

Educational approach

This training is based on both theory and practice:

  • Sessions of lectures illustrated with examples based on real cases
  • Review exercises to assist the exam preparation
  • Practice test similar to the certification exam
  • To benefit from the practical exercises, the number of training participants is limited

IT Standards, Process & Governance