ISO 27001: 2013 Information Security Management System - Introduction

Course Overview

ISO 27001: 2013 is the accepted global standard for effective information security management. Implementing ISO 27001 can bring you peace of mind that you are protecting your business and your customers’ data in line with good practice and GDPR requirements.

In our Introduction to ISO 27001: 2013 ISMS you will develop an understanding of the standard's key terms and definitions, and the ISO standardised high level structure. You will explore how to interpret and apply the key concepts and principles within your workplace, building on your existing processes.

Benefits

This course will help you to:

• Have a solid grasp of the key requirements and benefits of ISO 27001: 2013
• Interpret the requirements to manage your information security and drive continual improvement
• Implement a robust  ISMS that meets GDPR requirements
• Bring information security into the heart of your organisational culture
• Attract and retain customers by delivering information security assurance

Course Content

• Overview of ISO 27001: 2013 ISMS
• Key requirements, structure, terms and definitions
• Main concepts — Risk based thinking, process approach, Plan-Do-Check-Act
• Needs and expectations of interested parties
• Business continuity planning — encryption & information recovery
• Next steps for pursuing certification

Aimed at

This course is aimed at anyone who needs to understand ISO 27001: 2013 and how it works, such as:

• Business owners and managers with responsibility for planning, implementing, maintaining, supervising or auditing of an ISO 27001: 2013 ISMS
• Stakeholders with an interest in information security management systems
• Individuals pursuing a career in information security management