Training
INFORMATION SECURITY TRAINING
There is a need to establish a comprehensive Information Security Policy within all organizations. You need to ensure the confidentiality, integrity, and availability of both vital corporate information and customer information. The standard for Information Security Management System (ISMS) BS 7799-2 (the predecessor to ISO/ IEC 27001:2005) has fast become one of the world's established biggest sellers.
An Information Security Management System (ISMS) is a systematic approach to managing sensitive company information so that it remains secure. It encompasses people, processes and IT systems. BSI published a code of practice for these systems, which has now been adopted internationally as ISO/IEC 27001:2005.
The ISO/IEC 17799 Code of Practice for Information Security Management establishes guidelines and general principles for organizations to initiate, implement, maintain, and improve information security management. The objectives outlined provide general guidance on the commonly accepted goals of information security management.
Here is our Schedule of relevant training courses in Bulgaria:
|
ISO 27001:2005 ISMS Implementation Course
Course Description
Recent high profile information security breaches and the value of information are highlighting the ever increasing need for organisations to protect their information. An Information Security Management System (ISMS) is a controlled approach to managing sensitive company information so that it remains secure. It encompasses people, processes and Information Management Security Systems.
The objective of this course is to provide delegates with the necessary skills to implement an ISMS that is compliant with the requirements of ISO 17799 and meets the certification requirements of ISO 27001:2005. The course will provide delegates with a framework for implementation.
Who should attend?
- Staff tasked with the implementation and management of a ISO 27001:2005 Information security management system.
- Information security consultants.
- The course is designed for people who have a good understanding of ISO 27001:2005 and
ISO 17799:2005 Information security management systems, (attendance of Introduction to Information Security or the ISO 27001:2005 lead auditor course is recommended).
Benefits to Your Business
Both the objective and result of the course will be the construction of an effective ISMS under the expert tutelage and guidance of a BSI tutor. Take the knowledge and skills imparted during this exercise and use them to improve and protect your business.
Course Structure
- Background to Information Security.
- Determination of scope and Information Security policy.
- Identification of information assets.
- Determination of the value of information assets.
- Determination of risk and impacts.
- Identification of control objective and controls.
- Definition and implementation of polices.
- Production and implementation of policies, standards and procedures.
- Completion of ISMS documentation requirements.
- Awareness training.
- Certification process.
- Production of a ISMS Project Implementation Plan.
Further Information
See : http://bsi-emea.com/training
Introduction to ISO/IEC 20000:2005 - Information Technology - Service Management
Course Description
This is a one day introduction course to ISO/IEC 20000:2005 Information Technology - Service Management
Who should attend?
The course is aimed at all levels within an organization who need an understanding of ISO/IEC 20000:2005 Parts 1 & 2 and the certification process.
Benefits to Your Business
- A move towards conformance to an international standard for IT Service Management.
- A step closer towards the ability to provide services that meet customer requirements.
- Use of a management system for tendering of services.
Course Structure
- To provide a basic understanding of ISO/IEC 20000:2005
- To examine the certification process
- To review the benefits of achieving ISO/IEC 20000:20005
Further Information
See: http://bsi-emea.com/training