Information Security Management System (ISMS): ISO/IEC 27001

  online   |         |     10:00 - 13:00   |     69 days to start
900.0 SAR
Information Centers
GCC Standardization Organization (GSO)

The objective of this course

 to provide delegates with the necessary skills to implement an ISMS that is compliant with the requirements of ISO 17799 (recently renamed ISO 27002) and meets the certification requirements of ISO/IEC 27001. The course will provide delegates with a framework for implementation.

 Who should attend? 

  • Staff tasked with the implementation and management of a ISO/IEC 27001 Information security management system.
  • Information security consultants
  • The course is designed for people who have a good understanding of ISO/IEC 27001 and ISO 17799 (recently renamed ISO 27002) Information security management systems, (attendance of Introduction to ISO/IEC 27001 Information Security or the ISO/IEC 27001 lead auditor course is recommended).

Course outlines:

  • Background to Information Security
  • Determination of scope and Information Security policy
  • Identification of information assets
  • Determination of the value of information assets
  • Determination of risk and impacts
  • Identification of control objective and controls
  • Definition and implementation of polices
  • Production and implementation of policies, standards and procedures
  • Completion of ISMS documentation requirements
  • Awareness training
  • Certification process
  • Production of a ISMS Project Implementation Plan.

  Sorry! Trainer details are not found for this activity

Recent high profile information security breaches and the value of information are highlighting the ever increasing need for organizations to protect their information. An Information Security Management System (ISMS) is a controlled approach to managing sensitive company information so that it remains secure. It encompasses people, processes and Information Management Security Systems.