driving worldwide business excellence

Understanding the Requirements of ISO/IEC 27001:2013 for Information Security Management Systems

Home > Training > ism > Understanding the Requirements of ISO/IEC 27001:2013 for Information Security Management Systems

Seminar Content

This course runs for 1.5 days up to two days total and was developed to cover all requirements of the ISO/IEC 27001:2013 standard. The course includes definitions from ISO/IEC 27000:2018 (Information Security Management Systems – Overview and Vocabulary), Guidance from ISO/IEC 27003:2017 (Information Security Management System Implementation and Guidance). Group exercises and case studies will be used to develop the required skills.

Who Should Attend

This seminar is designed for Information Security Assurance Managers, ISO/IEC 27001:2013 Implementation and/or Transition Team Members, Management Representatives, and all others who would like to develop competency in ISO/IEC 27001:2013.

Recommended Training and/or Experience

An understanding of the ISO/IEC 27001:2013 requirements and/or work experience in applying ISO/IEC 27001:2013 is recommended.

Seminar Materials

Each participant will receive a seminar manual and a group workbook that includes practice in applying the requirements.

Seminar Goals

  • Understand the application of Information Security Management principles in the context of ISO/IEC 27001:2013.
  • Relate the Information Security Management system to the organizational products, services, activities and operational processes.
  • Relate organization’s context and interested party needs and expectations to the planning and implementation of an organization’s Information Security Management system.

Day One

  • Introduction and Welcome
  • The ISO Standards Explained
  • Introduction to ISO/IEC 27001:2013 and Key Terms from the ISO 27000:2014 – Overview and Vocabulary
  • ISO/IEC 27001:2013 Requirements Including Applicable Guidance from ISO 27003:2017
    • Group Exercise: Context of the Organization
    • Group Exercise: Interested Parties
    • Group Exercise: Audit Scenarios
    • Group Exercise : IT Security Controls

Day Two

  • ISO/IEC 27001:2013 Requirements Including Applicable Guidance from ISO 27003:2017 (cont’d)
    • Group Exercises: Audit Scenarios (cont’d)
    • Independent ISMS Written Exercise

Top

Search for Training

Course Keyword:

Series:

Start Date:

/ /

End Date:

/ /

Location: