ISO 27001:2005 Understanding & Implementing Information Security Management
Understanding & Implementing Information Security Management (ISO 27001:2005)
Recent changes in the Information Security industry have highlighted the need for organizations to protect their most valuable asset – information. The objective of this 2-day course is to provide attendees with the necessary skills to develop an information security framework for their organization. Attendees will learn how to assess and protect their business against threat and vulnerability. They will learn how to evaluate their organization’s information assets and implement a cost-effective security strategy that is compliant with ISO/IEC 27001:2005 using guidance from its complementary standard, ISO/IEC 17799:2005. Attendees will also learn how to benchmark their security practice within their company against this standard.
Key Session Topics:
- What is information security?
- The business need
- How to value your information
- Quantifying Risk and Risk Management
- Defining protection using ISO/IEC 17799
- Measuring your compliance to ISO/IEC 27001
Who Should Attend?
- Chief Information Officers or delegates
- Business System Managers
- Information Security Officers
- Information Technology Professionals
- Information Security Professionals (CISA/CISSP)
- Auditors who will be involved in introducing ISO 27001/17799 in an organization
Want to learn more? Contact us today to discuss obtaining grant funding for training or to invite us to your campus.
