This two-day course leads to the ISO/IEC27001 Foundation certificate in IT Security Management. The course overviews the recently revised version of 2013. ISO/IEC 27001:2013 builds upon established foundations as the most widely recognized international standard specifically aimed at information security management. The adoption of an Information Security Management System (ISMS) is a strategic decision driving the coordination of operational security controls across all of the organizations electronic and physical information resources.
ISO/IEC 27001:2013 defines the requirements for an ISMS, which includes: ISMS planning, support and operational requirements; leadership responsibilities; performance evaluation of the ISMS; internal ISMS audits; ISMS improvement; and, control objectives and controls.
The course consists of short lectures, exercises, discussions, examination technique training, mock examinations and culminates in an invigilated examination on the final day.