ISO 27001: 2013 Information Security Management System - Introduction

Course Overview

ISO 27001 is the accepted international standard for effective information security management. Implementing ISO 27001 can bring you peace of mind that you are protecting your business and your customers’ data in line with good practice and GDPR requirements.

In our Introduction to ISO 27001: 2013 ISMS you will develop an understanding of the standard's key terms and definitions, and the standardised high-level structure Annex SL. You will explore how to interpret and apply the key concepts and principles within your workplace, building on your existing processes and information security policies.

Benefits

This course will help you to:

• Gain a solid grasp of the key requirements and benefits of ISO 27001
• Interpret the requirements of the standard and Annex SL 
• Highlight how to Implement a robust ISMS to meet the GDPR regulations
• Bring information security into the heart of your organisational culture
• Attract and retain customers by delivering information security assurance

Course Content

• Overview of ISO 27001: 2013 ISMS
• Key requirements, structure, terms, and definitions
• Main concepts — Risk-based thinking, process approach, Plan-Do-Check-Act
• Needs and expectations of interested parties
• Leadership, resources and policies 
• Steps to ISO27001 certification 

Aimed at

This course is aimed at anyone who needs to understand the framework of ISO 27001, the information security management system. The course will highlight how: - 

• Business owners and managers with responsibility for planning, implementing, maintaining, supervising or auditing ISO 27001 ISMS
• Help identify who which stakeholders have an interest in information security, and why?
• help those Individuals pursuing a career in information security management on the framework and risk controls that sit around information security.