Course: ISO27001 Information Security Management Masterclass

This three-day Implementation Master Class provides comprehensive and practical coverage of all aspects of the ISO 27001 implementation process.

If you're in information security management, writing information security polices or implementing ISO27001 (BS7799), this Master class covers all the key steps in preparing for and achieving certification first time. Many previous attendees have now led their organizations to successful certification, and users of IT Governance training, books and toolkits now span the world.

This Masterclass is ideal for anyone involved in or responsible for implementing an Information Security Management System (ISMS) that conforms with ISO27001:

• Business managers
• Compliance Managers
• IT managers
• Quality managers
• Project managers
• Risk Managers
• Information security managers
• BS7799 Lead Auditors
• IT and other staff, including HR, legal and business users

Delegates will receive their own free copy of the worldwide "IT Governance: a Manager's Guide to Data Security and BS7799/ISO17799" (now in its 3rd edition and for some years the Open University's post graduate information security textbook), which provides the core material for this Masterclass.

This three-day Masterclass provides comprehensive and practical coverage of all aspects of the ISO 27001 implementation process.

While there are no formal entry requirements, this is a Masterclass, and it assumes that delegates have a basic knowledge of ISO 27001, the Information Security Management Standard - gained through practical experience, reading or through attendance at any course such as the 1 day ISO 27001 Foundation course.

There is a special package price for those who wish to attend both courses.

Those that pass the short invigilated exam (included in the course) will receive a formal IT Governance ISMS Master Implementer Certificate.

• How to write an information security policy
• How to determine the scope of your ISMS
• How to structure and manage your ISO27001 project
• How to allocate roles and responsibilities
• How to identify of information assets and information asset ownership
• How to carry out the risk assessment (the core competence of information security management)
• How to identify threats, vulnerabilities and impacts
• How to select a risk assessment tool
• The importance of a communication strategy
• Writing policies and producing other critical documentation
• The importance of staff and general awareness training
• The key elements of management review
• How to manage and drive continuous improvement
• How to prepare for your ISO27001 certification audit
• Key issues in ensuring that you pass the audit first time!

The effective combination of formal training and practical exercises, using practical business examples and case studies, accelerates your ISO27001 project and will save you work, cut time requirements and eliminate 'first time' trial and error.