Trainer Booking
Log in Sign up

ISO 27001 Information Security Management System

by Thomas Finke

Languages: German, English, Spanish, French, Italian, Dutch, Portuguese

Price (from): €2,500

Share Share

About the trainer:

I am the main channel for all new and current clients & projects, for E-Training-Learning-Software-Consulting within the manufacturing industries in Europe-DACH regions.
Main Focus: Automotive* Aerospace* Manufacturing* Logistics* Sales-Fintech*Telecommunications, assisting clients in Process Management, Productivity-Cost Reduction & Quality Management.

I also specialize in cost reduction and productivity training and large sales management ramping up and onboarding for rapidly growing modern start-ups.

more

Please login to send a message

ISO 27001 Information Security Management System by Thomas Finke

About the training

#ISO 27001 Information Security Management System

I will also shortly be releasing a series of ISO 27001 awareness courses designed for large Government Departments and Fin-Tech start-ups specially designed for young entries to the workforce up to Department head level.

Seminar/Course Content

This training program is offered as a 2-day course, Training covers the standard ISO IEC 27001 2005 in detail with the domain and control objectives

Who Should Attend/Target

System Administration team,Chief Information Security office, Network Team, Quality Assurance Managers, Process Implementation Team Members

Recommended Training and/or Experience

Participants should have an basic understanding of the Security terminologies

Seminar Materials

Each participant will receive a seminar manual including case studies

Seminar Goals

Provide in detail of the Information security management system and their control objectives

Seminar Outline

Day ITopics Covered

Session I

Introduction

Information Security A perspective
Business evolution
Various information threats
Myths about Information Security
Prime Concern protection of information
Parameters of Information security

Establishing ISMS

ISMS Definition
The ISO 27001 cycle and stakeholders (PDCA model)

Security Organization

Segregation of Duties
Key players of Security Function

Exercise

Form the Security organization and define the Roles and Responsibilities for the same

Session - IIIS Standard

Evolution of ISO 27001
Why ISO 27001
Structure of ISO 27001

Risk Management

Overview of Risk Management
Methodology for Risk Assessment
Risk Treatment
Risk Mitigation

IS-Audit

Audit Methodology
Audit reporting
Corrective and Preventive action

Exercise

Conduct Risk Assessment for your organization

Day II

Session ISecurity Domains

Security Policy
Organization of Information Security
Asset Management
Human resources security
Physical and environmental security
Communications and Operations Management
Access Control

Exercise

For the given scenario, identify the relevant controls and define the policy for that control

Session II

Security Domains Contd

Information systems acquisition, development and maintenance
Information security incident management
Business continuity management
Compliance
Roadmap for ISO/IEC 270012005 Certification

Risk Management
IS policies
Statement of Applicability (Applicable controls)
Implementation of ISMS
Implementation Review of ISMS
Stage I audit
Stage II audit