Course description
Recent high profile information security breaches and the value of information are highlighting the ever increasing need for organisations to protect their information. An Information Security Management System (ISMS) is a controlled approach to managing sensitive company information so that it remains secure. It encompasses people, processes and Information Management Security Systems.
The objective of this information security training course is to provide delegates with the necessary skills and tools to implement an Information Security Management System that meets the certification requirements of ISO 27001:2005 and is based on the code of practice defined by ISO 17799. The information security training course will prepare delegates for the ISO 27001 Lead Implementer Certificate and provide delegates with useful tools and a reference framework for implementation.
Who should attend?
- Staff tasked with the implementation and management of an ISO 27001:2005 Information Security Management System
- Information Security Consultants
- The information security training course is designed for people who have a good understanding of ISO 27001:2005 and ISO 17799:2005 Information Security Management Systems, (attendance of Introduction to Information Security or the ISO 27001:2005 Lead Auditor course is recommended)
Benefits to your business
Both the objective and result of the information security training course is the development of a skeleton Information Security Management System, including key processes, policies and procedures which can be used the moment you step back into your office to start implementing an effective Information Security Management System in your organisation. The knowledge and skills imparted during this information security training course will prove invaluable in improving and protecting your business.
Course structure
- Background to information security
- Roles and responsibilities in the development of an Information Security Management System
- Determination of Information Security Management System scope
- Writing the information security policy
- Determination of risk and impacts
- Identification of ISO 27001 control objective and controls
- ISO 27001 GAP Analysis
- Production of an Information Security Management System project implementation plan
- Production and implementation of policies, standards and procedures
- Security Awareness Training (SAT)
- Incident Management
- Business Continuity Management
- Definition of security metrics to measure the Information Security Management System processes and controls
- Completion of Information Security Management System documentation requirements
- Certification process
- Lead Implementer ISO/IEC 27001:2005 Certificate Exam
Further information
Fee: Five-day information security training course* including refreshments, lunch and information security training course notes - £1925 + VAT. (non-residential); £2345 + VAT (including hotel accommodation).
Attendance on this information security training course will provide delegates with 40 CPD points.
As a proportion of the information security training course is computer based each delegate will need to bring a laptop computer for the duration of the information security training course.
Next steps
For further information about specific training on this subject, please call us on
(+44) (0)845 086 9000 or enter your details in our enquiry form.
