Implementer and Internal Auditor

Certified ISO IEC 27001 Implementer and Internal Auditor
This course covers all the vital steps involved in planning, implementing and maintaining an ISO IEC 27001 compliant information security management system (ISMS).

This course is designed to
• Provide good insight on ISO IEC 27001 requirements.
• Impart good understanding of information security and how it applies to you and your organisation.
• Help you gain confidence that certification is within reach.

Audience
• CEO/CISO/Information Security Professionals
• IT Professionals
• HR Managers
• Admin Managers
• Anyone interested in information security

Course style
• The course is designed to involve delegate participation, using a mix of formal training and practical handson exercises, based primarily on a case study.

Prerequisites
• No prior knowledge is required.

Highlights of this Course
• Basics of ISO IEC 27001 basics.
• Why to get ISO IEC 27001 certified?
• The tenets of Information Security.
• What is ISMS?
• Overview of different stages of ISMS.
• Definition of a workable an Information Security Policy.
• Determination of ISMS scope.
• How to perform information security risk assessment & choosing appropriate risk treatment methods.
• Preparing a Statement of Applicability.
• ISMS review.
• Auditing principles.
• What does auditing achieve?
• How to prepare for the audit?
• How should auditing be conducted?
• Different types of audit.
• The phase 1 and 2 ISO IEC 27001 audits.
• Certification – what is next?
Course Duration
Introduction to ISO IEC 27001-2013 Standard and its components - 1 day
Implementation phases - 1 day
Internal Audit - 1 day