The ISO/IEC 27000 family of standards helps organizations keep information assets secure.

Using this family of standards will help organization manage the security of assets such as financial information, intellectual property, employee details or information entrusted to you by third parties.

ISO/IEC 27001 is the best-known standard in the family providing requirements for Information Security Management Systems (ISMS).

This course comprises of 36 hours of classroom component.

Learning Outcome

At the end of this course, participants will understand:
  • Purpose and business benefits of ISMS, ISMS standards, ISMS audits and third party Certification
  • Role and skills required by an auditor when planning, conducting, reporting and following up on an ISMS audit in accordance with ISO/IEC 27001:2013, ISO/IEC 27002:2013
  • Information technology
  • Security techniques
  • Code of practice for information security controls
  • ISO 19011:2011
  • Guidelines for auditing management systems and where applicable
  • ISO 17021:2015

Who should Attend?

  • Information security managers
  • IT and corporate security managers
  • Corporate governance managers
  • Risk and compliance managers
  • Information security consultants

Eligibility Criteria

  1. Management Systems
  2. Information security management
  3. ISO/IEC 27001
This course is endorsed under Critical Infocomm Technology Resource Programme Plus (CITREP+) Programme.
To find out more about CITREP+ Funding, please refer to Programme Support under CITREP+ page

Information is accurate as of 14 October 2019