ISO 27001:2013 Lead Implementer Course

Download Brochure

Duration: 3 days(4Hrs per Day)
Dates: January 11-13, 2021
Programme Director: Prof. Sudeep S.
Fees: Rs.12,000 Plus GST @18%

INTRODUCTION

Information Security is the main buzz word among CEOs, CIOs, IT Managers, employees and other stakeholders of any organization right now. With the increasing reliance on Information Technology for the conduct of business, every organization is very much concerned with the - Confidentiality, Integrity and Availability of information it handles. Systematic management of information requires the implementation of a proper Information Security Management System (ISMS) in an organization. The ISO/IEC 27001:2013 Standard brought out by the International Organization for Standardization in the year 2013 provides a robust framework for implementing ISMS in an organization. Implementing world-class ISMS in the organization, and getting it certified is a competitive advantage. This course offers an information security specialist or IT professional a practical guide for implementing ISMS effectively.

OBJECTIVES

• Proven and practical techniques based on ISO/IEC 27001 ISMS implementation and certification experiences.
• Comprehensive coverage of the managerial and technical aspects of ISO/IEC 27002.
• Detail explanations of the ISO/IEC 27001 ISMS components and the PDCA cycle.
• In-depth discussions on the necessary skills to implement, maintain and audit an effective ISMS.

CONTENTS

• The Importance of Information Security Introduction to Information Security Management System
• Requirements of a Formal ISMS and Establishing a Management Framework Dissecting ISO/IEC 27001 Security Controls
• Determination of Scope of Information Security Management System Identification & Classification of Information Assets
• Determination of Values of Information Assets Identification, Assessment and Treatment of Risks
• Determination of Policies & the Degree of Assurance Required from Controls Select Appropriate ISO/IEC 27001 Control Objectives
• Audit and Review of ISMS

METHODOLOGY

Course taught through lectures, work sessions, cases and presentations.

WHO SHOULD ATTEND

• IT Managers
• Information Security Professionals
• Business Managers/Analysts
• Networking & Security professional
• Aspirants of professional certifications like CISA/CISM/CISSP

PROGRAMME DIRECTOR :

Dr. Sudeep has more than seventeen years of experience in Information Technology & Management training domain. He has more than eight years of experience in teaching postgraduate management students and nearly eight years in the IT industry. His IT industry experience included software development, project management, information systems audit and information security consulting. He is a Certified Information Systems Auditor (CISA) and ISO 27001:2013 Lead Auditor. He has good exposure in auditing/consulting for banking & financial institutions and has associated with major financial institutions like Federal Bank, Dhanalaxmi Bank, Muthoot Finance, UAE Exchange and National Finance Co. (Oman). His teaching interest includes courses like international management, international business management and international economic organizations.