ISO27001 LI |
| About the Course |
ISO27001:2005 is the only ISO approved standard that enables an organization to certify its Information Security Management System (ISMS). The objective of this course is to prepare you in becoming an ISO 27001 Implementor.
The main objective of the course is to train the participants on the steps required to implement a management system as specified in ISO 27001:2005
|
| Who should attend this training? |
The course has been designed for those wishing to:
- Become Internal Quality Auditors (for auditing of software process compliance)
- Acquire sufficient appreciation of internal auditing of processes in a software company
- Enhance Quality through and effective internal audit process
- Extend and develop their previous knowledge of quality, systems and auditing skills
- Use the auditing skills for ISO 9001-2000 or CMM® implementation
|
| Course Contents |
|
Session One: ISMS Initiation
- Module 1: Introduction to the course and approach
- Module 2: Introduction to management systems
- Module 3: Introduction to ISO 27000 series
- Module 4: Introduction to ISO 27001 and ISO 27002 standards and PDCA cycle
- Module 5: Fundamental Principles of Information Security
- Module 6: Preliminary analysis
- Module 7: Project management
|
|
Session Two:The «PLAN» Phase
- Module 8: Discussion on Principles of Information Security
- Module 9: Project management
- Module 10: Risk Management Practices
- Module 11: Risk Assessment Methodologies
|
|
Session Three: The «DO» Phase
- Module 12: Document management program
- Module 13: Controls and processes design
- Module 14: Controls implementation
- Module 15: Formation, awareness and communication
- Module 16: Incidents management
- Module 17: Operation Management
|
|
Session Four: The «CHECK» and «ACT Phase» + The Certification Process
-
Module 18: Monitoring
- Module 19: Metrics and dashboards
- Module 20: Internal audit
- Module 21: Management review
- Module 22: Continual improvement
- Module 23: Certification audit
|
