Lead Implementer ISO/IEC 27001:2013

Objetivos

Upon completion of this training course, attendees will be able to identify:
What is information security management
Why information security management is important for an organization
The benefits of information security management
The context of ISO / IEC 27001/2
The key concepts and principles of ISO / IEC 27001: 2013
The terms and definitions used
The main requirements of ISO / IEC 27001: 2013
A typical framework to implement ISO / IEC 27001 after the PDCA cycle
Perform a standard review of the current position of an organization with respect to ISO / IEC 27001
Interpret the requirements of ISO / IEC 27001 from the perspective of implementation in the context of your organization
Implement the main elements of ISO / IEC 27001
Explain the concepts of leadership, project management elements, organizational change management, skills exchange and support / motivation during implementation
Complete the Lead Implementer ISO / IEC 27001 certification exam

gdpr

Disponible en formato e-learning

Disponible en formato presencial

Disponible en formato a distancia

Subvención disponible
A través de Fundae, cumpliendo requisitos.

Duración
25 horas

  • Dificultad 50% 50%
  • Nivel alcanzado 80% 80%

Dirigido a

Conocimientos requeridos

Temario

Día 1
Reasons for an ISMS andimportant considerations
What is implementation?
What is the implementationprocess and the process model?
Interviewing leadership
Project scope and planning
Cost estimation
Steps in a project process
Developing a typical schedule foran implementation plan
Process approach
Plan-Do-Check-Act and ISMS
ISO /IEC 27001 structure, historyand terms and definitions
High Level Structure
Management representativecriteria•Review of day 1

DÍA 2
Gap analysis – stage 1
What are the gaps?
Clause 4: Context of theOrganization
Interested parties andinformation assets
Gap analysis – stage 2 assetregister and asset classification
Clause 5: Leadership
Information Security Policy
Clause 6: Planning
Risk assessment
Risks – threats and vulnerabilities
Risk assessment tool – FMEA
Rating the risk and probability ofrisk
Review of day 2

DÍA 3
Clause 7: Support
Communication plan
ISMS documentation anddocument requirements
Clause 8: Operation
Security controls
Statement of applicability
Operational control measures
Clause 9: Performance evaluation
Clause 10: Improvement
Corrective actions andnonconformities
Certification
Review of day 3

DÍA 4

Implementation leadership andmanagement
Leadership attributes
Project management
Brainstorming in project planning
Ishikawa/Fishbone
Gantt chart
Managing organizational changethrough Change Management
Skill sharing and delegation
Support and motivation
Specimen exam
Review of day 4

DÍA 5
Final questions/revisión
Evaluation
Introduction to the exam
Exam
Reflection and feedback

Solicita información del curso