USA
Canada 
China 
France 
Germany 
India 
Italy 
Mexico 
Middle East 
Singapore 
Spain 
Thailand 
Understanding the Requirements of ISO/IEC 27001:2013
Understanding the Requirements of ISO/IEC 27001:2013 for Information Security Management Systems
Register for courses 30 days in advance and get 5% off this price
Note:Pricing is dependent on location and may vary.Course Duration: 1 Day - 8 Hours/day
This one-day course was developed to cover all requirements of the ISO/IEC 27001:2013 standard. The course includes definitions from ISO/IEC 27000:2018 (Information Security Management Systems - Overview and Vocabulary), Guidance from ISO/IEC 27003:2017(Information Security Management System Implementation and Guidance). Group exercises and case studies will be used to develop the required skills.
Learning Objectives
- Understand the application of Information Security Management principles in the context of ISO/IEC 27001:2013.
- Relate the Information Security Management system to the organizational products, services, activities and operational processes.
- Relate organization’s context and interested party needs and expectations to the planning and implementation of an organization’s Information Security Management system.
Day One
- The ISO Standards Explained
- Introduction to ISO/IEC 27001:2013and Key Terms from the ISO 27000:2014 - Overview and Vocabulary
- ISO/IEC 27001:2013 Requirements Including Applicable Guidance from ISO 27003:2017
- Group Exercise: Context of the Organization
- Group Exercise: Interested Parties
- Group Exercise: Audit Scenarios
- Group Exercise: IT Security Controls
- Understanding ISMS Final Exam
Who Should Attend
This seminar is designed for Information Security Assurance Managers, ISO/IEC 27001:2013 Implementation and/or Transition Team Members, Management Representatives, and all others who would like to develop competency in ISO/IEC 27001:2013.
Each participant will receive a seminar manual and a group workbook that includes practice in applying the requirements.
An understanding of the ISO/IEC 27001:2013 requirements and/or work experience in applying ISO/IEC 27001:2013 is recommended.