APMG ISO 27001 Foundation

This two-day and a half APMG ISO/IEC 27001 Foundation course, allows participants to acquire the fundamental knowledge about the content and the high-level requirements of the ISO/IEC 27001 standard, as well as understand at a foundation level how the standard operates in a typical organization.

1. Day 1
• Module 1: Introduction, background and definitions
• Module 2: Key publications
• Module 3: Leadership and support of the ISMS
• Module 4: Planning and operation of the ISMS (part 1)

1. Day 2
• Review
• Module 4: Planning and operation of the ISMS (part 2)
• Module 5: Information security control objectives and controls
• Module 6: Achieving ISO/IEC 27001 Certification

1. Day 3 (half a day)
• Exam - APMG, ISO/IEC 27001 Foundation

APMG ISO 27001 Practitioner

This two-day and a half, APMG ISO/IEC 27001 Practitioner course, prepares the participants to achieve a sufficient understanding of ISO/IEC 27001 and its application in a given situation. A successful Practitioner candidate should, with suitable direction be able to start applying the International Standard to enable the management of information security (depending on the real situations).

Objectives

At the end of the course the participant should be able to:

Apply the principles of ISMS policy and its information security scope, objectives, and processes within an organizational context

Apply the principles of risk management including risk identification, analysis and evaluation and propose appropriate treatments and controls to reduce information security risk, support business objectives and improve information security

Analyze and evaluate deployed risk treatments and controls to assess their effectiveness and opportunities for continual improvement

Analyze and evaluate the effectiveness of the ISMS through the use of internal audit and management review to continually improve the suitability, adequacy and effectiveness of the ISMS

Understand, create, apply and evaluate the suitability, adequacy and effectiveness of documented information and records required by ISO/IEC 27001

Identify and apply appropriate corrective actions to maintain ISMS conformity with ISO/IEC 27001

Program

1. Day 1
• Introduction: Objectives, exam & question formats
• Module 1: Introduction and background
• Module 2: Preparing for the ISMS

1. Day 2
• Review
• Module 3 - Planning and Operating the ISMS
• Module 4: Controls (part 1)

1. Day 3 (half a day)
• Review
• Module 4: Controls (part 2)
• Exam - APMG, ISO/IEC 27001 Practitioner