 |
Learn the Proven Skills to Implement an ISO 27001 Compliant ISMS
Course Date & Venue
| Date | 20-22 Oct 2011 |
| Time | 9:30am - 5:00pm |
| Venue | 7D, Trust Tower, 68 Johnston Road, Wan Chai, Hong Kong [See Map] |
*i-TotalSecurity reserves the rights to modify the schedule as required.
About ISO/IEC 27001
ISO/IEC 27001 sets out the requirements for an Information Security
Management System (ISMS) and the Plan-Do-Check-Act security management cycle. The Annex A of the standard
provides a comprehensive set of 133 information security controls regarding 11 aspects of security areas for any organization.
Implementing a world-class ISMS in the organization and get it certified are definitely a competitive advantage. On the other hand, possessing
the necessary knowledge and proven techniques to implement an ISMS that is compliant with the requirements of ISO/IEC 27001 distinguishes yourself
from the peers and let you stand out from the crowd...
Unique Course Features
This 18-hour intensive course designs for information security specialist or control professionals
who are looking for the details of the ISO/IEC 27001, a how-to guide for implementing ISMS effectively, and the procedures for
conducting audits by Certification Bodies. Specifically, this course provides:
- Proven and practical techniques based on numerous successful ISO/IEC 27001 ISMS implementation and certification experiences
- Comprehensive coverage of the managerial and technical aspects of ISO/IEC 27002
- Detail explainations of the ISO/IEC 27001 ISMS components and the PDCA cycle
- In-depth discussions on the necessary skills to both implement, maintain and audit an effective ISMS
- 10+ case studies and hands-on exercises simulating a real world implementation and certification process
Upon completion of this course, delegates will take a paper-based internal examination and can obtain an "ISMS Implementation Specialist" certificate issued by us!
Course Outline
With 18 contact hours, this course provides comprehensive coverage of the skills and techniques
of implementing the world-class information security management system. Summary of course topics are given below. Please email us at
info@i-TotalSecurity.net for more information.
| Summary of Course Topics |
| Information Security and its importance |
| Introduction to Information Security Management System |
| Requirements of a Formal ISMS and Establishing a Management Framework |
| Dissecting ISO/IEC 27001 Security Controls |
| Determination of Scope of Information Security Management System |
| Identification & Classification of Information Assets |
| Determination of Values of Information Assets |
| Identification, Assessment and Treatment of Risks |
| Determination of Policies & the Degree of Assurance Required from Controls |
| Select Appropriate ISO/IEC 27001 Control Objectives |
| Development of Relevant Polices, Standards & Procedures |
| Production and Implementation of Policies, Standards and Procedures |
| Completion of ISMS Documentation Requirements |
| Audit and Review of ISMS |
Course Leader
Mr. Alen Lo, MBA(CUHK), BSc(HKU), CISA, CISSP, CISM, CEH, IRCA Certified ISMS Lead Auditor
He has over 15 years of solid experiences on information systems
security, control and audit. During this period, he has been
responsible for assessing the efficiency and effectiveness of
information systems security and controls, implementing information security management systems for various
financial institutions, insurance companies, government departments, telecommunications service providers, commercial data centres, utilities
and multi-national conglomerate.
Moreover, Alen has over 10 years of international teaching
experiences and has been an instructor of the HKU SPACE, the SCS of
the Chinese of University of Hong Kong, and the Open University of Hong Kong
designing and delivering various award-bearing e-Commerce and information
systems security courses and seminars for numerous public, leading, listed
and military organizations in Asia Pacific, Europe, Greater China, Oceania and Middle East.
About i-TotalSecurity
A pioneer in information systems control and security education and
consultancy who bring the best knowledge, skills and practices to meet
the certification and working needs of individuals and corporations.
Since 1995, our qualified and no-nonsense security specialists are
teaching information security with students from leading corporations,
government and military organizations internationally.
Enquiry
Call us at +852 2965.4445 or e-mail info@i-TotalSecurity.net
|
