This is a two-day awareness course for those requiring an introduction to the ISO 27001:2022 International Standard.
Course Content
Day 1:
The course content includes the following:
- Annex SL
- High Level Structure
- History of Information Security Management
- Confidentiality, Integrity and Availability
- Benefits of ISO27001:2022
- What is Information Security Management
- Continual Improvement
- Context of the Organisation
- Leadership
- Support
- Operations
- Performance Evaluation
- Improvement
Day 2:
- Statement of Applicability:
- Annex 5 - Organisational Controls
- Annex 6 - People Controls
- Annex 7 - Physical Controls
- Annex 8 - Technological Controls
A complete set of course notes, and a document pack will be provided to all delegates.
Course Objectives
- To explain the history and development of ISO 27001.
- To identify internal and external context.
- To understand how to determine scope and boundaries.
- How to identify the needs and expectations of interested parties
- To explain the new risk-based thinking approach
- Understand the requirements of ISO 27001:2022 and how to implement them
Course Package Details
Duration: Two Day
Time: 9:30am - 4:00pm
Price: £500 per delegate (this includes refreshments and lunch)
Who Should Attend?
The course is designed for anyone requiring an understanding of ISO 27001:2022
How organisation benefit from ISO9001:2015 Certification
We spend over 1 million hours each year improving the performance of businesses around the world. This experience allows us to see first-hand how ISO27001:2022:
- Helps you identify risks to your information and put in place measures to manage or reduce them.
- Helps you put in place procedures to enable prompt detection of information security breaches.
- Requires you to continually improve your Information Security Management System (ISMS).
- Improved reputation and stakeholder confidence.
- Builds trust and credibility in the market to help you win more business.
- Requires you to identify all internal and external stakeholders relevant to your Management System ISMS.
- Requires you to communicate the ISMS policy and ensure that the workforce understands how they contribute to it.
- Top management need to define ISMS roles and ensure individuals are competent.
- Improved information security awareness amongst all relevant parties.
- Reduces likelihood of staff-related information security breaches.
- Shows commitment to information security at all levels of the business.
- Gives you a framework which helps you to manage your legal and regulatory requirements.
- It makes you assess risks to information security so you can identify potential weaknesses and respond.
- Requires you to put in place controls that are proportionate to the risks.
- Requires you to continually evaluate risks to your information security and make sure the controls you put in place are appropriate.
- Helps you protect your information so you can continue business as usual and minimize disruptions.
Resources:
The referenced materials above can be downloaded here: