Information security is critically important to both you and your customers. BSI has developed a comprehensive one-day non-residential information security training course that explores in depth all of the business implications of the International Standard for Information Security Management (ISO27001:2005).
Benefits to Your Business:
· Effective information security management throughout the organization
· Foolproof protection of your interests and those of your customers.
The delegates learn about:
· Information security
· The purpose of the standard
· Management of objectives and controls
· The importance of the most significant controls
· The implications of implementing ISO 27001:2005 into an organization
· The implications of certification and commercial pressures
· Penalties for non-compliance.
Using up-to-date case study material and participatory exercises, delegates will be made aware of the latest best practice to assist effective internal auditing to ISO27001.
· Introduction to Information Security: The basics, myths and reality
· Business Needs: Commercial and legal implications
· Introduction to ISMS standards: History, development, current situation
· Certification: The process, maintenance
· Accreditation: Current developments, options
· Designing and implementing a management system:
- Policy
- Scope
- Risk Assessment
- Risk Management
- Statement of Applicability
- Critical Success Factors
- Accident Investigation
- Asbestos Awareness Training
- Basic Health & Safety (Introduction)
- Business Continuity (BS25999)
- Business Continuity Implementation and Audit
- Certificate - Business Continuity Institute (CBCI)
- Construction Design Management (CDM) regulations 2007
- Control of Substances Hazardous to Health
- Coshh Risk Assessment
- Designing Safe Systems of Work
