What is ISO 27001?
ISO 27001 belongs to the family of ISO 27000 standards which helps an organization in keeping their information asset secure. ISO 27001 provides requirements for an information security management system (ISMS) and is the best-known standard in the family.
ISO 27001 was developed to “provide a model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system”
What is an Information Security Management System (ISMS)?
An information security management system is a systematic approach to managing sensitive information of a company in order to make it secure. It is helpful for all organizations irrespective of their size, in keeping information assets secure.
The six-part planning process of ISO 27001 is as follows:
- Define a security policy
- Define the scope of ISMS
- Conduct a risk assessment
- Manage identified risks
- Select control objectives & controls to be implemented
- Prepare a statement of applicability
Opex Dynamics is also providing ISO 27001 training courses. Our expert team will teach you the whole process of putting an ISMS into your organization’s current information security management practices. We require that delegate should have a prior knowledge and understanding of the current standard so that our tutors can help you develop skills and understanding of the practicalities involved when they set up a typical management system framework that is in line with the requirements of ISO 27001.
In addition to the ISO 27001 training courses, Opex Dynamics also provide audit training courses. In these audit training courses, our experts will teach you how to plan, execute and report on an audit of an information security management system. You will be provided with the full knowledge of the entire process, from initiating an audit to reporting on the findings and conducting a follow-up.
Who should attend this course?
- Corporate governance managers
- IT and corporate security managers
- Information security managers
- Information security consultants
- Risk and compliance managers
- Corporate governance managers
- IT and corporate security managers
- Information security managers
- Information security consultants
- Risk and compliance managers
What will you learn?
- Identification of a typical framework to implement an ISMS compliant with ISO 27001 following the Plan, Do, Check, Act (PDCA) cycle
- Implementation of the key elements of ISO 27001
- Interpretation of the requirements of ISO 27001 from the perspective of implementation in the context of your organization
- Principles of an auditing conformance to ISO 27001
- Initiation and preparation of audit activities
- Completion of an audit & how to conduct an audit follow up.