ISO 27001 ISMS Implementation and Internal Auditor Workshop

Course Contents:

This course will cover following topics:

• Introduction to Information security System principles and Concepts
• Detailed introduction to ISO/IEC 27001:2013( ISO 27001) and the related series of standards
• ISMS Requirements Definition, Scope Estimation, Design and Implementation (using Requirements Specification, Best Practices and Guidelines, example Deliverables, and Project planning  Documentation)
• Legal, regulatory, Self-Imposed, and Contractual Requirements Definition and Documentation
• Information Security Risk Assessment, Governance and Business Continuity Management
• ISO and ISMS Audit Perspective and Approach

Also included as part of the course are:

• Practical exercises and feedback
• Tools and Example case studies

Who should attend?

All those who intend to participate in implementation of Information security systems in their organization and/or act as certified ISI 27001:2013 Internal auditors.

Benefits

This course will provide delegates with the following benefits:

• Advanced knowledge of the requirements of ISO 27001 and related standards and guidelines
• A basic knowledge of Management Systems, focusing on Information Security Management System

(ISMS)

• Detailed understanding of the processes necessary to design, document and implement an Information Security Management System( ISMS ) conforming to the requirements of ISO 27001
• An understanding of validated concepts and methodologies for assessing and managing Information Security Risk and performing adjudicated Gap Analyses
• An understanding of auditor expectations and the process approach to auditing of Information Security Management systems
• An understanding of the documentation and evidence necessary to state conformity to and/ or pursue certification to the requirements and specifications of ISO 27001