The Business Process & IT Best Practices Specialist!
Contact Us
+91 9810609560

ISO 27001 Foundations Training Course


Course Overview

This 1 or 2-days training course introduces the ISO 27001 standard.
The course work involves lectures, discussions, role-play, individual and group exercises to get you started with understanding the ISO 27001 standard.
On successful completion of the course, the participants should be capable of understand the process approach for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an organization's ISMS.

Course Objective

Upon completion of this course, students should be able to:

  • Understand the purpose of an information security management system (ISMS)
  • Overview of the processes involved in establishing, implementing, operating, monitoring, reviewing and improving an ISMS as defined in ISO/IEC 27001 :2005
  • Understand and ask the pertinent questions required for ISO/IEC 27001 :2005 Gap Analysis
  • Exposure to Risk Assessment and Treatment techniques
  • Guide to select requisite controls based on ISO/IEC 27001:2005.
  • Understanding the certification process

Course Benefits

At the end of this course, delegates will be able to understand:

  • Information and information assets
  • The key principles of an Information Security Management System
  • Process of building an Information Security Management system (ISMS) using the 7 Secure Seven step ISMS Implementation Framework
  • Risk Management viz. Risk Assessment & Risk Treatment
  • ISMS Policy Design, Development and Maintenance
  • Applying ISO/IEC 27001:2005 controls – a short overview
  • Disaster Recovery & Business Continuity Planning
  • ISO/IEC 27001:2005 Certification & Certification Audits

Who should attend?

  • Managers who need an understanding of the security issues within their company
  • Those nominated to perform security audits
  • Consultants who wish to advice on ISO/IEC 27001:2005 methodology.

Required Prerequisites

  • This course does not require a prior knowledge of the standard

Award of Certificate

  • Information Security Foundations Professional