COURSE DESCRIPTION conformity or otherwise with ISO /
IEC 27001 (with ISO / IEC 27002) in This course is certificated by the accordance with ISO19011 and ISO / Chartered Quality Institute (CQI) and IEC 17021 where appropriate. International Register of Certificated www.sgs.com/en/training-services Auditors (IRCA). CQI / IRCA Course Learners will need to demonstrate www.facebook.com/sgsglobalacademy Certification Number 17279. acceptable performance in all areas to www.linkedin.com/showcase/sgsacademy complete the course successfully. The objective of this course is to provide training@sgs.com learners with the knowledge and skills required to perform first, second and PRIOR KNOWLEDGE COURSE DURATION: 40 hours third-party audits of Information Security Before starting this course, learners are Management Systems (ISMS) against DELIVERY METHODOLOGY: VILT expected to have the following prior ISO / IEC 27001 (with ISO / IEC 27002), in COURSE LANGUAGE: English knowledge: accordance with ISO 19011 and ISO / IEC ACCREDITATION: CQI/IRCA • Management systems 17021, as applicable. • Understand the Plan-Do-Check-Act (PDCA) cycle COURSE CERTIFICATION COURSE CRITERIA • Information security management Learners will be required to complete UPON COMPLETION OF THIS COURSE, • knowledge of the following the face to face examination within LEARNERS WILL BE ABLE TO: information security management 180 days upon VILT course start principles and concepts: date. Those who pass both the face • Explain the purpose and business – Awareness of the need for information to face examination and continuous benefits of a ISMS, of information assessment will be issued with a security; security management systems “Certificate of Achievement” that – The assignment of responsibility for standards, of management system satisfies the formal training for an information security; audit and of third-party certification; individual seeking certification as a – Incorporating management commitment • Explain the role of an auditor to plan, CQI / IRCA auditor / lead auditor. The and the interests of stakeholders; conduct, report and follow up an “Certificate of Achievement” is valid – Enhancing societal values; ISMS audit in accordance with ISO for a period of five years from the date – Using the results of risk assessments 19011 and ISO / IEC 17021, where of the last day of the Course for the to determine appropriate controls to reach purpose of certifying as an auditor with appropriate; acceptable levels of risk; the CQI / IRCA. • Plan, conduct, report and follow – Incorporating security as an essential up an audit of an ISMS to establish element of information networks and systems; the active prevention and detection of information security incidents; Certified by: – Ensuring a comprehensive approach to information security management; – Continual reassessment of information security and making of modifications as appropriate. CERTIFIED COURSE ISO / IEC 27001 VILT SESSION 4 VILT SESSION 9 Knowledge of the requirements of ISO / • Registration, certification and auditor • Case study IEC 27001 (with ISO / IEC 27002) and the competence commonly used information security • Audit role play activity management terms and definitions, as • Audits: definition, principles and given in ISO / IEC 27000 (overview and types VILT SESSION 10 vocabulary), which may be gained by • The audit process • Audit role play -continued completing an CQI / IRCA certified ISMS Foundation Training Course or equivalent. • Speciment examination VILT SESSION 5 • Preparing for the on-site audit ( audit VILT SESSION 11 COURSE CONTENT stage 1) VILT SESSION 1 • Case study • Activities • ISMS and the ISO/IEC 27000 series • Activities of standards VILT SESSION 6 • Process-based ISMS 1 DAY FACE TO FACE ( CLASSROOM BASED • Developing the checklist • Activities WITHIN 180 DAYS OF COURSE START DATE) • Activities • Morning content refresher