Course description
Information security is critically important to both you and your customers. BSI has developed a comprehensive one-day course that explores in depth all of the business implications of the International Standard for Information Security Management (ISO/IEC 27001).
Delegates learn about
- Information security
- The purpose of the standard
- Control objectives and controls
- The importance of the most significant controls
- The implications of implementing ISO/IEC 27001 into an organization
- The implications of certification and commercial pressures
- Penalties for non-compliance.
Who should attend?
- Senior Managers
- IT Managers
- Systems Managers
- IT Security Officers
- Auditors who will be involved in introducing ISO/IEC 27001 into an organization.
Benefits to your business
- Effective information security management throughout the organization
- Foolproof protection of your interests and those of your customers.
Course structure
- Introduction to Information Security: The basics, myths and reality
- Business Needs: Commercial and legal implications
- Introduction to ISMS standards: History, development, current situation
- Certification: The process, maintenance.
- Accreditation: Current developments, options.
- Designing and implementing a management system:
- Policy
- Scope
- Risk Assessment
- Risk Management
- Statement of Applicability
- Critical Success Factors.
Next steps
View our ISO/IEC 27001 Information Security training course schedule.
For more information, please contact us or complete our enquiry form.
