ISO27001 ISMS Foundation AND Masterclass

This four day Implementation Master Class provides comprehensive and practical coverage of all aspects of the ISO 27001 implementation process.  It includes the one day Foundation so is more suited to those with less experience of Information Security Management Systems.

If you're in information security management, writing information security polices or implementing ISO27001 (BS7799), this Master class covers all the key steps in preparing for and achieving certification first time. Many previous attendees have now led their organizations to successful certification, and users of IT Governance training, books and toolkits now span the world.

This Masterclass is ideal for anyone involved in or responsible for implementing an Information Security Management System (ISMS) that conforms with ISO27001:

• Business managers
• Compliance Managers
• IT managers
• Quality managers
• Project managers
• Risk Managers
• Information security managers
• BS7799 Lead Auditors
• IT and other staff, including HR, legal and business users

Delegates will receive their own free copy of the worldwide "IT Governance: a Manager's Guide to Data Security and BS7799/ISO17799" (now in its 3rd edition and for some years the Open University's post graduate information security textbook), which provides the core material for this Masterclass.

This four-day Masterclass provides comprehensive and practical coverage of all aspects of the ISO 27001 implementation process.

While there are no formal entry requirements, though many delegates have a basic knowledge of information security issues gained through practical experience.

Those that pass the short invigilated exam (included in the course) will receive a formal IT Governance ISMS Master Implementer Certificate.

• How to write an information security policy
• How to determine the scope of your ISMS
• How to structure and manage your ISO27001 project
• How to allocate roles and responsibilities
• How to identify of information assets and information asset ownership
• How to carry out the risk assessment (the core competence of information security management)
• How to identify threats, vulnerabilities and impacts
• How to select a risk assessment tool
• The importance of a communication strategy
• Writing policies and producing other critical documentation
• The importance of staff and general awareness training
• The key elements of management review
• How to manage and drive continuous improvement
• How to prepare for your ISO27001 certification audit
• Key issues in ensuring that you pass the audit first time!

The effective combination of formal training and practical exercises, using practical business examples and case studies, accelerates your ISO27001 project and will save you work, cut time requirements and eliminate 'first time' trial and error.