ISO27001 Training

Who Should Attend The ISO27001 Course

This course is aimed at individuals who want a globally-recognised ISO 27001 lead implementer and lead auditor qualification to further their careers.  It is an important addition to the skillset of and anyone involved in information security management, developing information security policies or implementing ISO 27001, either as a lead implementer, lead auditor or as part of an implementation team.

Course Content

• The key concepts, principles and requirements of ISO/IEC 27001:2013
• The terms and definitions used in the Standard
• Determine the scope of your ISMS
• Secure senior management commitment
• Building a compelling business case
• Structure and manage your ISO 27001 project
• Review and map existing organisational controls to Annex A of ISO 27001
• The Statement of Applicability (SoA), and justifications for inclusions and exclusions
• Conducting an information security risk assessment
• Develop a management framework, write policies and produce other important documentation
• Building an effective communication strategy and general awareness training
• The key elements of management reviews
• Prepare for your ISO 27001 certification audit
• Manage and drive continual improvement under ISO 27001
• Best-practice audit methodology based on ISO 19011
• Establish, maintain and manage an audit programme
• Plan, Conduct, Report, Summarise and Follow-up on an audit
• Effective interviewing techniques and observation skills
• Using audits to identify non-conformities and ensure appropriate corrective action is taken

What's Included?

• Colour Printed Course Notes
• IT Governance: An International Guide to Data Security and ISO27001/ISO27002
• Examination on final day
• Certificate on passing the exam

Course Timing

Duration: 5 Days

Time: 9am – 4pm