ISO/IEC 27001 | ISO Certification | Information Security Management System


Three days classroom training with sample documents

• Introduction to ISO/IEC 27001: 2015: Importance, background and benefits, definitions and terms of the standard along with key requirements                                      for implementation, main concepts of risk assessments, Plan-Do-Check-Act Cycle
• Develop, Implement and monitor an Information Security Management Systems
• Gap Analysis, Business Plan, Management Review Meeting guideline
• Understanding the standard clause by clause
• Listing and understanding of mandatory documents
• Asset Inventory, Risk Management, SWOT Analysis including Stakeholder analysis and comparison with current organisational status,                                    Statement of Applicability, Applying Standard Controls on organisational processes, self-assessment checklist
• Information Security Controls Implementation using ISO/IEC 27002
• Cyber Security fundamentals and its awareness
• Sample Toolkit Documentation: development and implementation framework
• Documentation: Policies, Procedures, Scope, Management System Manual, Registers, Forms, etc.
• Implementation guide and formulating awareness programs for employees
• How to plan, execute and report Internal Audit