مواصفة الايزو Iso27001
Introduction
This course aims to train delegates in the principles and practices of undertaking Information Security Management System (ISMS) audits in line with the guidelines and requirements of the ISO/IEC 27001
Who Should Attend
Designed for people who wish to conduct external audits on behalf of assessment bodies for ISO 27001 certification, but also suitable for those who need to conduct thorough internal audits on behalf of their own organisation or to be involved in ISMS management and consulting activities.
The training course has been designed and is delivered to meet the requirements of IRCA/2016/07/1 Jan 07.
Learning Objectives
Participants will identify and learn the skills and techniques of auditing and to communicate the audit findings effectively to the organisation's management.
By the end of the course successful students will be able to explain
• the purpose of an ISMS and the processes involved in establishing, implementing, operating, monitoring, reviewing and improving an ISMS as defined in ISO 27001, including the significance of these for ISMS auditors
• the purpose, content and interrelationship of ISO 27001:2005, the international standard ISO 27002:2005 and ISO/IEC 13335 Parts 1 & 2 (MICTS) and ISO/IEC TR 18044:2004, ISO 27006:2007 and the legislative framework relative to an ISMS
• the role of an auditor to plan, conduct, and follow up an ISMS audit in accordance with ISO 19011 and the guidance criteria contained in ISO 27006:2007
and will have acquired the skills to
• interpret the requirements of ISO/IEC 27001 & ISO 27006:2007 in the context of ISMS audit
• undertake the role of an auditor to plan, conduct, report and follow up an ISMS audit in accordance with ISO 19011
Course Details
Role play and case studies simulate the real-world assessment and certification process.
The course runs for 5 days and is a mix of formal lectures and practical exercises, including evening work. It concludes with delegates taking an examination (IRCA paper
للتحميل كامل المواصفة
في المرفقات
Introduction
This course aims to train delegates in the principles and practices of undertaking Information Security Management System (ISMS) audits in line with the guidelines and requirements of the ISO/IEC 27001
Who Should Attend
Designed for people who wish to conduct external audits on behalf of assessment bodies for ISO 27001 certification, but also suitable for those who need to conduct thorough internal audits on behalf of their own organisation or to be involved in ISMS management and consulting activities.
The training course has been designed and is delivered to meet the requirements of IRCA/2016/07/1 Jan 07.
Learning Objectives
Participants will identify and learn the skills and techniques of auditing and to communicate the audit findings effectively to the organisation's management.
By the end of the course successful students will be able to explain
• the purpose of an ISMS and the processes involved in establishing, implementing, operating, monitoring, reviewing and improving an ISMS as defined in ISO 27001, including the significance of these for ISMS auditors
• the purpose, content and interrelationship of ISO 27001:2005, the international standard ISO 27002:2005 and ISO/IEC 13335 Parts 1 & 2 (MICTS) and ISO/IEC TR 18044:2004, ISO 27006:2007 and the legislative framework relative to an ISMS
• the role of an auditor to plan, conduct, and follow up an ISMS audit in accordance with ISO 19011 and the guidance criteria contained in ISO 27006:2007
and will have acquired the skills to
• interpret the requirements of ISO/IEC 27001 & ISO 27006:2007 in the context of ISMS audit
• undertake the role of an auditor to plan, conduct, report and follow up an ISMS audit in accordance with ISO 19011
Course Details
Role play and case studies simulate the real-world assessment and certification process.
The course runs for 5 days and is a mix of formal lectures and practical exercises, including evening work. It concludes with delegates taking an examination (IRCA paper
للتحميل كامل المواصفة
في المرفقات