ISO 27001: 2013 ISMS – Effective Implementation

Training Duration: 3 to 5 days  depending upon attendees’ background

Training Delivery Method: On-site, instructor-led course; or online, instructor-led course

Prerequisites:

IT security background at the implementation or management level, IT audit, IT controls

What Problem Does This Training Help Solve?

Learn theory and implementation of ISO27002 standard and subsequent steps that need to be taken to get ISO27001 accreditation

Who Should Attend?

 IT controls professionals, IT auditors, IT security professionals, security professionals who have ISO 27001 certification requirements for their organization on their agenda, IT risk managers, third party service providers who are required by the client to maintain ISO 27001 certification

Course Material:

Content-rich manual/course handouts consisting of about 300 foils

Course Syllabus:

This seminar is designed to educate participants regarding the ins and outs of an organization’s ISO 27001 security certification.  After gaining tremendous popularity in Europe, this certification is becoming increasingly popular in the USA for different organizations. ISO 27001:2013  is the world’s most widely accepted information security standard. It is a code of practice for ISMS. Compliance with this standard provides assurance that the organization is protecting its assets and managing risks as per best practices and recognized industry standards.

Topics to be covered:

  • Overview of ISO/IEC 27001
  •  Relationship with ISO 27002 (ISO 17799)
  • Scope and definition of ISMS
  • What you have currently in place and its assessment
  • ISO 27001 requirements and gap analysis
  • Security policies, standards, procedures, and guidelines
  • Security control objectives, and controls
  • Establishing, monitoring, and reviewing of ISMS
  • Corrective and preventive actions
  • OECD and ISO 27001
  • Relationship with ISO 9001 and ISO 14001
  • Three stage audit process for certification
  • Pre-certification audits and certification
  • Post certification audits