Content Outline
Your ISO 27001 training will include:
- Information Security, Information Security Management, and ISO 27000 Standards
- Principles of information security
- Review of ISO 27001, ISO 27002, ISO 27003, ISO 27005, ISO 27007, and ISO 27008
- Achieving the benefits of Information Security
- Information Security Management
- Planning and designing
- Implementing and benchmarking
- Measuring and monitoring
- Learning and reporting
Establish a firm program starting point by using ISO 27000 standards to build out the initial information security core policy. Throughout the class, our expert instructor will convert ISO 27000 series concepts and requirements into a real ISO 27001 Information Security Policy. Along with the instructor, you will get your information security program properly initiated by constructing:
-
- Information Security Policy Statement
- Information Security General Terms and Definitions
- Information Security Scope Document
- Information Security Strategy Statement including identification of requirements for the Information Security program setup, initiation, operation, maintenance, and improvement
- Information Security Organizational Roles and Responsibilities Statement
- Information Security Risk Policy
* ISO Standards are NOT included in this course, nor provided in class. Students are encouraged to bring their own hard-copies of the standards to the class. ISO standards are available for purchase at www.iso.org.