ISO 27001 Transition Auditor
ISO/IEC 27001 takes the process approach to Quality Management Systems described in ISO 9001 and applies this to information security. The standard provides a model for establishing, operating and maintaining an Information Security Management System (ISMS) - a valuable component of an integrated management system.Auditors with experience of quality management systems are often called upon to extend their audits to cover Information Security Management Systems.
This two day provides the essential knowledge to enable trained auditors to take on this extended role. As an alternative, this course can take place in your own workplace - where live audit and practical examples can be included*.
Key Topics
- The value of information security and the associated business risks of failure
- The relationship of ISO/IEC 27001 with other standards and requirements
- ISO/IEC 27001 ISMS requirements
- Defining the system: How the ISMS is tailored to the business
- Information security risk assessment and treatment
- Implementation, operation and maintenance of the ISMS
- The role of senior management, staff and the HR department
- Practical ISMS auditing
Who should attend
- Senior managers with responsibility for business risk management
- Staff with responsibility for handling critical business and customer information
- Quality managers and auditors with responsibility for information security assurance
Outcomes
On completion of the course, delegates will be able to:
- Understand the principal requirements of ISO/IEC 27001
- Extend ISO 9001 audits to identify information security management issues vs. ISO/IEC 27001
Course Dates/Venues (select a date to book)
| Euston, London Venue: Thistle Hotel Residential Fee: £845 Non-residential Fee: £695 October 06 - 07 |