Master the implementation and management of information security management systems (ISMS) based on ISO/IEC 27001:2022.
Why should you take this training course?
Information security threats and attacks grow and improve constantly. As such, organizations are increasingly concerned about how their valuable information is handled and protected. The best form of defense against them is the proper implementation and management of information security controls and best practices. Information security is the globally accepted benchmark and also a key expectation and requirement of customers, legislators, and other interested parties.
This training course is designed to prepare you to implement an information security management system (ISMS) based on the requirements of ISO/IEC 27001. It aims to provide a comprehensive understanding of the best practices of an ISMS and a framework for its continual management and improvement.
The training content is packed with practical exercises and case studies which will help you get equipped with real-world expertise that you can apply to your day-to-day operations and activities. Our training courses are all-inclusive, meaning that they cover everything you need to get the certificate.
Who should attend this training course?
- Project managers and consultants involved in and concerned with the implementation of an ISMS
- Expert advisors seeking to master the implementation of an ISMS
- Individuals responsible for ensuring conformity to information security requirements within an organization
- Members of an ISMS implementation team
Course agenda
Day 1 Introduction to ISO/IEC 27001 and initiation of an ISMS
- Training course objectives and structure
- Standards and regulatory frameworks
- Information Security Management System (ISMS)
- Fundamental information security concepts and principles
- Initiation of the ISMS implementation
- Understanding the organization and its context ISMS scope
Day 2 Planning the implementation of an ISMS
- Leadership and project approval
- Organizational structure
- Analysis of the existing system
- Information security policy
- Risk management
- Statement of Applicability
Day 3 Implementation of an ISMS
- Documented information management
- Selection and design of controls
- Implementation of controls
- Trends and technologies
- Communication
- Competence and awareness
- Security operations management
Day 4 ISMS monitoring, continual improvement, and preparation for the certification audit
- Monitoring, measurement, analysis, and evaluation
- Internal audit
- Management review
- Treatment of nonconformities
- Continual improvement
- Preparing for the certification audit
- Certification process and closing of the training course
With innovative and professionally qualified training programs, we offer comprehensive knowledge, together with our partners and highly qualified trainers, consultants and lecturers. We deliver training according to internationally recognized standards in the areas of project- and process management, information security, quality management, data protection and other topics such as soft skills and an agile mindset.
We support you with training and workshops according to internationally recognized standards and certifications in the areas of project- and process
management, information security, quality management, data protection and other topics such as soft skills and an agile mindset.
Impressum | Datenschutz | AGB
