Course Description

THE RATIONALE

There is a need for organizations to be able to manage information while considering the security and risk involved in their day to day activities.  This course will enhance the organization holistic information security management capabilities.

The course will highlight the framework requirements to mitigate information security risk. This course will enable the organization to learn how to build and implement their information security measures as well as ensure that it achieves the purpose. This course is useful to reduce security impact and costs. If you make solid effort to secure data you are less likely to be involved in a data security incident and the associated costs. ISO 27001 can be used as a way to evaluate the effort that an organization has gone to generate, manage and secure information.

THE COURSE OBJECTIVES:

At the end of this course, delegates will able to:

• Understand all the requirements and best practices for compliance for ISO 27001.
• Enhance awareness of the sensitivity of data to understand importance of its protection.
• Develop aspects of information security, including improving security behavior.
• Develop better ways to manage data to eliminate data Security incident and the cost effect on the organization.
• As part of ISO 27001 you need to show how your employees apply the tenets of the certification to protect information in their area of work/responsibility.

THE COURSE CONTENT

The course will cover the following:

MODULE 1: INTRODUCTION

• Introduction to the information security management system (ISMS), ISO 27001
• What is information security management system?
• What is ISO 27001?
• What are the structures of ISO 27001?

MODULE 2: INFORMATION SECURITY

• Information security principles
• ISMS security controls
• Implementing ISO 27001 requirements
• Implementing ISO 27001 as a project

MODULE 3: FRAMEWORKS

• ISMS frameworks
• Risk Assessment
• Risk Management

MODULE 4: DOCUMENTING THE REQUIREMENT

• Documenting ISO 27001 requirements
• Continuous improvement in information security
• ISO 27001 Benefits

 TARGET AUDIENCE

The course is designed for all employees of the organization as there are needs for appropriate information security awareness. It is also for beginners in information security and ISO standards. It is also relevant to staff whose duty is to implement security or work on security policies in the workplace. The course is recommended to anyone who needs to be informed on information security and risk management system.

DELIVERY METHOD: Multiple training delivery methods are employed including Lectures, Demonstrations, Practical, Self Practice and workshop in order to reinforce these training and learning methods.

Venue:

Fee:

Duration: 1 week

Course Date: June 12th -16th 2023