Policy Workshop: ISO 27001 Risk Management
Get a thorough understanding of ISO 27000 standards for information security governance, and how to leverage the ISO 27000 standards to establish and maintain an information security management system (ISMS) program.
Information Security Governance
ISO 27001 specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented Information Security Management System within the context of the organization's overall business risks. It specifies requirements for the implementation of security controls customized to the needs of individual organizations or parts thereof. This ISO standard is designed to ensure the selection of adequate and proportionate security controls that protect information assets and give confidence to interested parties.
This 2-day ISO 27001 training and certification workshop provides thorough coverage of the ISO 27000 standards, as well as setting out advice on the implementation of an information security initiative. The purpose of the course is to:
- Describe the principles and processes of information security governance and management;
- Provide thorough coverage of the requirements of ISO 27001;
- Give practical guidance on designing a suitable framework;
- Give practical advice on implementing information security management;
- Prepare you for your ISO 27001 certification exams required for Certified Internal Controls Architect (CICA) professional credentialing.
- Establish a firm program starting point by using ISO 27001, ISO 27002, and 27003 to build out the initial Information Security Management core policy.
* ISO Standards are NOT included in IRMCB risk management training, nor provided in class. Students are encouraged to bring their own hard-copies of the standards to the class. ISO standards are available for purchase at www.iso.org. |
Who should attend?
Recommended participants by role for this ISO 27001 training include:
- Policy Approvers / Strategy Decision Makers
- Chief Information Officer (CIO / CISO)
- Information security managers
- Compliance officers
- IT managers
- Risk managers
- Business Continuity Managers
- Operations department heads (business unit managers)
- Auditors
Getting IRMCB standardized training and taking certification exams
IRMCB courses are delivered by Authorized Training and Education Centers (ATECs) in standardized live and online formats. Select ATECs are also authorized to proctor exams and issue certificates.
Authorized Training and Education Center |
Headquarters |
Authorized for Live Instructor-Led Training |
Authorized for Web-Based Training |
Authorized exam center |
Certified Information Security |
United States |
SCHEDULED EVENTS |
REGISTER |
REGISTER |