ISO-27001 Lead Implementer
None
Duration
.
Audience
None
Prerequisite
None
Objectives
None
Information
This training can be provided on site or remotly.
Detailled program
General informations
Schedule
Day-1
- Section 1: Course objectives and structure
- Section 2: Standards and regulatory frameworks
- Section 3: Information Security Management System (ISMS)
- Section 4: Fundamental concepts and principles of information security Section 5: Initiate the ISMS implementation
- Section 6: Understand the organization and its context
- Section 7: Analyze the existing system
Day-2
- Section 08: Leadership and project approval
- Section 09: ISMS scope
- Section 10: Information security policy
- Section 11: Risk management process
- Section 12: Information security organizational structure
- Section 13: Statement of Applicability and management decision to implement the ISMS
Day-3
- Section 14: Design of security controls and drafting of specific policies and procedures
- Section 15: Implementation of security controls
- Section 16: Definition of the document management process
- Section 17: Communication plan
- Section 18: Training and awareness plan
- Section 19: Operations management
- Section 20: Incident management
Day-4
- Section 21: Monitoring, measurement, analysis and evaluation
- Section 22: Internal audit
- Section 23: Management review
- Section 24: Treatment of problems and nonconformities
- Section 25: Continual improvement
- Section 26: Preparing for the certification audit
- Section 27: Certification process and closing the training
Day-5
This day is usually to prepare for the exam, have an early lunch and then take the exam.
- Morning : late start and review of the training's content, the standard ... to ensure student can swiftly manipulate those for the Certification Exam.
- Afternoon : After an early & light meal, the students are taking the exam.
Certification
Usually take place on the last day of the training. Certification is done by PECB |
Organisation
- Pré-requis : Le premier jour de la formation le participant devra être Certifié 27001 Lead Implementer. A défaut, l'examen pourra être post-posé ou rendu invalide. En cas de doute, vous devez prendre contact avec nous. C'est l'organisme de Certification qui détermine les conditions d'accès à la possibilité d'être ISO-27001 LA.
- Durée : 5 jourss
- Matériel requis : Être en possession de la norme ISO-27001.
- Autres : Idéalement l'étudiant devrait avoir une copie des autres normes de la famille ISO-27xxx (ou avoir une connaissance passive du contenue de celles-ci).
- ISO-27000 : afin d'avoir un Vocabulaire commun
- ISO-27001 : afin d'avoir une approche commune sur la gestion de la CyberSécurité
- ISO-27002 : afin d'avoir une approche commune sur les solutions à mettre en oeuvre pour réduire les risque de la CyberSécurité