ISO 27001:2022 Understanding Requirements for ISMS Training

Course Duration: 2 Days - 8 Hours/day

Omnex is an Exemplar Global Certified TPECS provider for Exemplar Global IS Competency Unit. This two-day course has been developed to satisfy the Exemplar Global-IS Examination Profile and, as such, all attendees who successfully pass the exams during this course will achieve a Certificate of Attainment for the following competency unit:

· Exemplar Global-IS

This 2-day course has been developed to cover all requirements of the ISO/IEC 27001:2022 standard and its Annex A controls; with the possibility to be combined with Internal or Lead Auditor training. The course includes definitions from ISO/IEC 27000:2018 (Information Security Management Systems – Overview and Vocabulary) and Guidance from ISO/IEC 27003:2017 (Information Security Management System Implementation and Guidance). Group exercises and case studies will be used to develop the required skills.

Note: For ISO 27001 Internal Auditor Training, please [Click Here].

Note: For ISO 27001 Lead Auditor Training, please [Click Here].

Learning Objectives

  • Understand the application of Information Security Management principles in the context of ISO/IEC 27001:2022.
  • Relate the Information Security Management system to the organizational assets, information security services, activities and operational processes.
  • Relate organization’s context and interested party needs and expectations to the planning and implementation of an organization’s Information Security Management system.

Course Outline

Day One

· Fundamentals of Information Security Management Systems (ISMS)

o What is an Information Security Management System (ISMS)?

o The purpose of ISO/IEC 27001 ISMS described.

· Process Approach to Information Security

· Risk-based Thinking

o ISMS Risks

o ISMS Risk Assessment

o ISMS Risk Treatment

o Group Exercise 1: Risk Identification Discussion

· ISO/IEC 27001 Clause 4 – Context of the Organization

· ISO/IEC 27001 Clause 5 – Leadership

o Group Exercise 2: Audit Scenarios

· ISO/IEC 27001 Clause 6 – Planning

Day Two

· ISO/IEC 27001 Clause 7 – Support

· ISO/IEC 27001 Clause 8 – Operation

· A look at and understanding of Annex A Controls

o Group Exercise 3: Audit Scenarios

· ISO/IEC 27001 Clause 9 – Performance Evaluation

· ISO/IEC 27001 Clause 10 – Improvement

o Group Exercise 4: Audit Scenarios

· Understanding ISMS Final Exam

Who Should Attend

This course is designed for Information Security and IT Managers, ISO/IEC 27001:2022 Implementation and/or Transition Team Members, Management Representatives, and all others who would like to develop competency in ISO/IEC 27001:2022.

Course Materials

Each participant will receive a seminar manual and a group workbook that includes practice in applying the requirements.

Note: Omnex does not provide copies of standard(s) during training courses, but clients are encouraged to have their own copy.

Note: Omnex does not provide copies of standard(s) during training courses, but clients are encouraged to have their own copy.

Pre-Requisite

An understanding of the ISO/IEC 27001:2022 requirements and/or work experience in applying controls for ISO/IEC 27001:2022 is recommended.

Upcoming Training

ISO 27001:2022 Understanding Requirements for ISMS Training Program is available in multiple locations globally, including the USA, Canada, Mexico, India, Europe, Thailand, Singapore, Middle East and China.