ISO/IEC 27001 Foundation

Course Description

SUMMARY
This course enables participants to learn about the best practices for implementing and managing an Information Security Management System (ISMS) as specified in ISO/IEC 27001:2013, as well as the best practices for implementing the information security controls of the eleven domains of the ISO 27002. This training also helps to understand how ISO/IEC 27001 and ISO 27002 relate with ISO 27003 (Guidelines for the implementation of an ISMS), ISO 27004 (Measurement of information security) and ISO 27005 (Risk Management in Information Security).

Who Should Attend?

• Members of an information security team
• IT Professionals wanting to gain a comprehensive knowledge of the main processes of an Information Security Management System (ISMS)
• Staff involved in the implementation of the ISO/IEC 27001 standard
• Technicians involved in operations related to an ISMS
• Auditors
• CxO and Senior Managers responsible for the IT governance of an enterprise and the management of its risks

Learning objectives

• Understand the elements and operations of an Information Security Management System (ISMS)

• Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks
• Understand the approaches, standards, methods and techniques used for the implementation and management of an ISMS