Description
This course is an introduction for anyone involved in the development, implementation and management of an information security management systems based on ISO/IEC 27001.The course will benefit those planning to complete other Information Security Management Systems training, for internal auditing and the Lead Auditor Course, as it provides a strong basis of knowledge and understanding of ISO/IEC 27001 upon which to build auditing skills.
This course is comprised of lectures and workshop exercises.
Objectives
By the end of this course, participants will be able to:- explain the purpose and business benefits of an information security management system;
- outline the structure and content of ISO/IEC 27001 and its relationship with ISO/IEC 27000 and ISO/IEC 27002;
- explain the specific information security management-related requirements of ISO/IEC 27001:2013.
Audience
Before beginning this course, we recommend that delegates have knowledge of the following:a) Management systems, in particular, an understanding of the Plan-Do-Check-Act (PDCA) cycle
b) Information security management
c) A basic knowledge of the concepts of information security management and an understanding of commonly used information security management terms and definitions, as given in ISO/IEC 27000.
Note: SGS shall provide only generic information and advice which are freely available in the public domain.
SGS will not provide company-specific advice towards any development and implementation of managements systems for eventual certification, which contravenes requirements of the IAF Guidance (i.e. provision of consultancy services).
Classroom 1 Day
{BEDC8E5E-5FCF-4551-A8B7-61CC6DB8C86F}