This fully certified, practitioner-led course equips you with the skills to lead an ISO 27001-compliant information security management system (ISMS) implementation project.
Developed by global ISO 27001 experts Alan Calder and Steve Watkins, and drawing on their industry-leading implementation guide IT Governance – An International Guide to Data Security and IS027001/ISO27002, this three-day course covers all nine of the key steps involved in planning, implementing and maintaining an ISO 27001-compliant ISMS.
Duration: 3 Days
Cork Date: 21-23 Mar, 05-07 Sep
Dublin Date: 13-15 Jun, 07-09 Nov
This course is also available as a customised client specific course.
There are no formal entry requirements. However, it is assumed that participants will have a basic knowledge of ISO 27001 gained through practical experience, reading the standard, or by attending the ISO27001 Certified ISMS Foundation Training Course.
The course is aimed at anyone involved in information security management, writing information security policies or implementing ISO 27001, either as a lead implementer or as part of an implementation team.
What you will learn:
Securing senior management commitment and building the business case.
The role and structure of an information security policy.
How to determine the scope of your ISMS based on the requirements of ISO 27001.
Developing a management framework.
How to structure and manage your ISO 27001 project.
How to allocate roles and responsibilities for your ISO 27001 implementation.
The definition of risk in ISO 27001 and options for risk assessments under the Standard.
The benefits of, and key issues when selecting, a risk assessment tool.
How to carry out an information security risk assessment – the core competence of information security management.
The Statement of Applicability (SoA), and justifications for inclusions and exclusions.
Reviewing your existing controls and mapping controls to Annex A of ISO 27001.
The importance of an effective communication strategy.
Writing policies and producing other critical documentation.
The importance of staff and general awareness training.
The key elements of management review.
How to manage and drive continual improvement under ISO 27001.
How to prepare for your ISO 27001 certification audit.
Important information to ensure that you pass the audit first time.
CIS LI examination:
Take the CIS LI examination at the end of the course – a 90-minute, multiple-choice, ISO 17024-certificated exam set by IBITGQ.
There is no extra charge for taking the exam at the end of the course.
This course enables delegates to qualify for 21 CPD/CPE credits, and fits well with the CISSP and SSCP Continued Professional Education Programme.