ISO 27001:2005 Internal Quality Audit Training in Middle East
driving worldwide business excellence
 
Training and Workshops Overview

Internal Quality Audit ISO 27001:2005

Seminar/Course Content

This training program is offered as a 2 day course, Training covers the standard ISO/IEC 27001:2005 in detail with the domain and control objectives to perform the internal Quality audit in the organization

Who Should Attend/Target

System Administration team, Chief Information Security officer, Network Team, Quality Assurance Managers, Process Implementation Team Members, Internal Quality Audit team

Recommended Training and/or Experience

Participants should have an basic understanding of the Security terminologies

Seminar Materials

Each participant will receive a seminar manual including case studies

Seminar Goals

Provide in detail of the Information security management system and their control objectives to perform the internal Quality Audits

Seminar Outline

Day ITopics Covered

Session I

Introduction

Information Security A perspective
Business evolution
Various information threats
Myths about Information Security
Prime Concern protection of information
Parameters of Information security

Establishing ISMS

ISMS Definition
The ISO 27001 cycle and stakeholders (PDCA model)

Security Organization

Segregation of Duties
Key players of Security Function

Exercise

Form the Security organization and define the Roles and Responsibilities for the same

Session - IIIS Standard

Evolution of ISO 27001
Why ISO 27001
Structure of ISO 27001

Risk Management

Overview of Risk Management
Methodology for Risk Assessment
Risk Treatment
Risk Mitigation

IS-Audit

Audit Methodology
Audit reporting
Corrective and Preventive action

Exercise

Conduct Risk Assessment for your organization

Day II

Session ISecurity Domains

Security Policy
Organization of Information Security
Asset Management
Human resources security
Physical and environmental security
Communications and Operations Management
Access Control

Exercise

For the given scenario, identify the relevant controls and define the policy for that control

Session II

Security Domains Contd

Information systems acquisition, development and maintenance
Information security incident Management
Business continuity management
Compliance

Roadmap for ISO/IEC 270012005 Certification

Risk Management
IS policies
Statement of Applicability (Applicable controls)
Implementation of ISMS
Implementation Review of ISMS
Stage I audit
Stage II audit

Exercise

For the given scenario conduct the Information Security Audit

Course Sequence TTA TP21

Eram - Omnex
Al Khobar Business Gate | Tower "A" 6th Floor | King Faisal Bin Abdulaziz Road | P.O.Box. 76629
Al-Khobar 31952 | Kingdom of Saudi Arabia | Tel: 00966 13 8493 777 Extn: 3344 | Mobile: +96 6591024684
Fax: 00966 13 8496010 | Email: info-me@omnex.com

Quick Contact

© 2016 Omnex Inc, USA. All rights reserved
Questions or comments regarding this website: webmaster@omnex.com
Powered By Omnex Communications

Sitemap | Privacy Policy | Terms of Use