Information security is becoming more and more a business critical issue as executives and IT professionals are responsible for ensuring the safeguarding of client information, corporate data and compliance with various regulatory and legal requirements.

The ISO 27001 Information Security Standard provides those responsible for securing corporate information and associated assets to demonstrate they have taken a very powerful step in complying with internationally recognised best practices in information security.

Managing Information Security with the ISO 27001 Information Security Standard provides a framework that will enable those responsible for securing sensitive information assets using a quality based approach to identify key assets and how best to manage the associate threats and risks.

The subjects covered include: overview of information security; introduction to the ISO 27001 Information Security Standard; identifying key information assets; identifying risks; strategies for mitigating and managing risk; implementing appropriate security controls; monitoring the effectiveness of security controls.

The course materials are supported with a number of practical exercises, tips and case studies to illustrate and give experience in applying the techniques described.

On completion of this course, delegates will be able to:

• Identify the benefits of implementing ISO 27001

• Define the scope of an ISMS

• Understand the basics of Information Risk Management

• Understand how to plan and implement ISO 27001:2005 within an organisation

• Understand the path to Accreditation and Certification.

back to top>>