Continental Europe,
Middle East and Africa
Middle East and Africa
Information Security Training
Introduction to ISO 27001:2005 and ISO 17799:2005 Information Security Management Systems
Course Description
Information security is critically important to both you and your customers. BSI has developed a comprehensive one-day course that explores in depth all of the business implications of the International Standard for Information Security Management (ISO 27001:2005).
Delegates learn about:
- Information security
- The purpose of the standard
- Control objectives and controls
- The importance of the most significant controls
- The implications of implementing ISO 27001:2005 into an organization
- The implications of certification and commercial pressures
- Penalties for non-compliance.
Who should attend?
- Senior Managers
- IT Managers
- Systems Managers
- IT Security Officers
- Auditors who will be involved in introducing ISO 27001:2005 into an organization.
Benefits to Your Business
- Effective information security management throughout the organization
- Foolproof protection of your interests and those of your customers.
Course Structure
- Introduction to Information Security: The basics, myths and reality
- Business Needs: Commercial and legal implications
- Introduction to ISMS standards: History, development, current situation
- Certification: The process, maintenance.
- Accreditation: Current developments, options.
- Designing and implementing a management system:
- Policy
- Scope
- Risk Assessment
- Risk Management
- Statement of Applicability
- Critical Success Factors.
- Open Forum
Further Information
For further information please contact us on +44 (0)20 8996 6325 or complete our Enquiry form.