ISO 27001 Lead Implementer

Site Admin
Mensagens: 2979
Registado: segunda abr 16, 2018 12:42 am

ISO 27001 Lead Implementer

Mensagem por admin » terça jun 12, 2018 9:06 am

Mastering the implementation and management of an Information Security Management System (ISMS), based on ISO 27001:2013, with ISO 27001 Lead Implementer training course.

*Project managers or consultants wanting to prepare and to support an organization in the implementation of an Information Security Management System (ISMS);
*ISO 27001 auditors who wish to fully understand the Information Security Management System implementation process;
*CxO and Senior Managers responsible for the IT governance of an enterprise and the management of its risks;
*Members of an information security team;
*Expert advisors in information technology;
*Technical experts wanting to prepare for an information security function or for an ISMS project management function.


1.Introduction to Information Security Management System (ISMS) concepts as required by ISO 27001; Initiating an ISMS
• Introduction to management systems and the process approach
• Presentation of the standards ISO 27001, ISO 27002 and ISO 27003 and regulatory framework
• Fundamental principles of Information Security
• Preliminary analysis and establishment of the level of the maturity level of an existing information security management system based on ISO 21827
• Writing a business case and a project plan for the implementation of an ISMS
2.Planning the implementation of an ISMS based on ISO 27001
• Defining the scope of an ISMS
• Development of an ISMS and information security policies
• Selection of the approach and methodology for risk assessment
• Risk management: identification, analysis and treatment of risk (drawing on guidance from ISO 27005)
• Drafting the Statement of Applicability
3.Implementing an ISMS based on ISO 27001
• Implementation of a document management framework
• Design of controls and writing procedures
• Implementation of controls
• Development of a training & awareness program and communicating about the information security
• Incident management (based on guidance from ISO 27035)
• Operations management of an ISMS
4.Controlling, monitoring, measuring and improving an ISMS; certification audit of the ISMS
• Controlling and Monitoring the ISMS
• Development of metrics, performance indicators and dashboards in accordance with ISO 27004
• ISO 27001 internal Audit
• Management review of an ISMS
• Implementation of a continual improvement program
• Preparing for an ISO 27001 certification audit
5.ISO 27001 Lead Implementer Certification Exam