Information security is critically important to both you and your customers. BSI has developed a comprehensive one-day course that explores in depth all of the business implications of the International Standard for Information Security Management (ISO/IEC 27001).
Delegates learn about:
- Information security
- The purpose of the standard
- Control objectives and controls
- The importance of the most significant controls
- The implications of implementing ISO/IEC 27001 into an organization
- The implications of certification and commercial pressures
- Penalties for non-compliance.
Who should attend?
- Senior Managers
- IT Managers
- Systems Managers
- IT Security Officers
- Auditors who will be involved in introducing ISO/IEC 27001 into an organization.
Benefits to Your Business
- Effective information security management throughout the organization
- Foolproof protection of your interests and those of your customers.
Course Structure
- Introduction to Information Security: The basics, myths and reality
- Business Needs: Commercial and legal implications
- Introduction to ISMS standards: History, development, current situation
- Certification: The process, maintenance.
- Accreditation: Current developments, options.
- Designing and implementing a management system:
> Policy
> Scope
> Risk Assessment
> Risk Management
> Statement of Applicability
> Critical Success Factors.
- Open Forum
Next steps
View course schedule. For more information, please contact us or complete our training enquiry form.
