ISO/IEC 27001:2013 Information Security Management Systems Foundation Course

This course is an introduction for anyone involved in the development, implementation and management of an information security management systems based on ISO/IEC 27001.
 
The course will benefit those planning to complete other Information Security Management Systems training, for internal auditing and the Lead Auditor Course, as it provides a strong basis of knowledge and understanding of ISO/IEC 27001 upon which to build auditing skills.
 
This course is comprised of lectures and workshop exercises.

By the end of this course, participants will be able to:

• explain the purpose and business benefits of an information security management system;
• outline the structure and content of ISO/IEC 27001 and its relationship with ISO/IEC 27000 and ISO/IEC 27002;
• explain the specific information security management-related requirements of ISO/IEC 27001:2013. 

Before beginning this course, we recommend that delegates have knowledge of the following:
a) Management systems, in particular, an understanding of the Plan-Do-Check-Act (PDCA) cycle
b) Information security management
c) A basic knowledge of the concepts of information security management and an understanding of commonly used information security management terms and definitions, as given in ISO/IEC 27000.

Note:  SGS shall provide only generic information and advice which are freely available in the public domain.

SGS will not provide company-specific advice towards any development and implementation of managements systems for eventual certification, which contravenes requirements of the IAF Guidance (i.e. provision of consultancy services).