ISO 27001 Implementation Step by Step
What you'll learn
- Practical way to implement ISO 27001 in their enterprise
- Step by step ISO 27001 implementation
- No prerequisites
Implementing an ISO 27001-compliant ISMS (Information Security Management System) can be a challenge, but it does not have to be costly or hard to learn. This course is for you if you want to implement ISO 27001 in your organizations in an effective way. Although we are explaining the concepts while going through the slides a minimum knowledge about the ISO 27001 standard is required. We strongly recommend students to take our ISO 27001 Foundation course which gives a good introduction to those do not have any previous knowledge about the standard.
ISO/IEC 27001 is widely known standard, providing requirements for an information security management system (ISMS), though there are more than a dozen standards in the ISO/IEC 27000 family. Using them enables organizations of any kind to manage the security of assets such as financial information, intellectual property, employee details or information entrusted by third parties.
Most organizations have a number of information security controls. However, without an information security management system (ISMS), controls tend to be somewhat disorganized and disjointed, having been implemented often as point solutions to specific situations or simply as a matter of convention. Security controls in operation typically address certain aspects of information technology (IT) or data security specifically; leaving non-IT information assets (such as paperwork and proprietary knowledge) less protected on the whole. Moreover, business continuity planning and physical security may be managed quite independently of IT or information security while Human Resources practices may make little reference to the need to define and assign information security roles and responsibilities throughout the organization.
Who this course is for:
- IT Administrators, IT Managers, IT Security administors
PhD in computer science and IT manager with 30 years technical experience in various fields including IT Security, IT Governance, IT Service Management , Software Development, Project Management, Business Analysis and Software Architecture. I hold many IT certifications such as
ISO 27001 Auditor, ComptIA Security+, GSEC, CEH, CISM
COBIT 5 Assessor/Implementer
ITIL Expert, Lean IT
PMP, PMI-ACP, Prince2 Practitioner, Praxis
Lean Six Sigma Black Belt, ISO 9001
and many more.