Reviewing and Improving Your ISO27001 ISMS

Level
Total time

Reviewing and Improving Your ISO27001 ISMS

IT Governance
Logo IT Governance

Need more information? Get more details on the site of the provider.

Starting dates and places

This product does not have fixed starting dates and/or places.

Description

  • You've achieved ISO27001 certification (well done!) – what do you do next?
  • How do you ensure your ISMS continues evolving to meet the ever-changing challenges?
    • New laws and regulations
    • New threats and vulnerabilities
    • New technologies
    • New standards and certification requirements
  • What does Best Practice for Management Review, CAPA and Continual Improvement look like?
  • How do we measure control effectiveness?

If you are asking yourself these and other questions, this constantly up-dated 2-day course is ideal for you. You can book to attend a single quarterly sitting of this course, or you can enjoy substantial savings when you subscribe to a year's worth of attendance in …

Read the complete description

Frequently asked questions

There are no frequently asked questions yet. If you have any more questions or need help, contact our customer service.

Didn't find what you were looking for? See also: .

  • You've achieved ISO27001 certification (well done!) – what do you do next?
  • How do you ensure your ISMS continues evolving to meet the ever-changing challenges?
    • New laws and regulations
    • New threats and vulnerabilities
    • New technologies
    • New standards and certification requirements
  • What does Best Practice for Management Review, CAPA and Continual Improvement look like?
  • How do we measure control effectiveness?

If you are asking yourself these and other questions, this constantly up-dated 2-day course is ideal for you. You can book to attend a single quarterly sitting of this course, or you can enjoy substantial savings when you subscribe to a year's worth of attendance in advance.

4 courses for cheaper than the price of 3! Book all four courses for the price of £2595+vat, which is less than £650 + vat per course !!

Available dates

  • 24 - 25 Oct 2011
  • 24 - 25 Jan 2012
  • 18 - 19 Apr 2012
  • 17 - 18 Jul 2012

What does this course cover?

This innovative training course is constantly refreshed and renewed!

While the structure of the course is relatively fixed, the content of each session is updated to reflect changes in the economic, business, and risk environments over the previous quarter.

Not only does the course provide a comprehensive update across the broad range of areas for which information security managers are responsible, it is designed to cover – across the four successive quarterly sittings of the course – measures of control  effectiveness across all 133 controls in Annex A, and ISMS process maturity indicators for all ISMS and control processes.  For most delegates, the most advantageous way to take advantage of this course is to book one year's worth of attendance in advance!

The training course is interactive and provides delegates with the opportunity to interact with the trainers to better identify how to apply current lessons to their own organisations.

Here is an overview of the 18 highly topical – current – sessions of the Reviewing and Improving your ISO 27001 ISMS Course:

  1. Headline events of the last quarter;
  2. Management Review Best Practices;
  3. Changes in the Business & Certification Environments;
  4. Changes in the Information Security Environment;
  5. Changes in the IT Regulatory Environment – UK, EU, US and RoW;
  6. New & Emerging Best Practice Standards and Codes of Practice;
  7. New & Emerging Technical Standards;
  8. Key Technology Trends and their Implications for C, I and A;
  9. New & Emerging Professional Certifications;
  10. New & Emerging Risks, Threats and Vulnerabilities;
  11. Reviewing and Updating your Risk Assessment;
  12. Approaches to Integrating ISO27001 with other Frameworks and Standards;
  13. Measures of Control Effectiveness;
  14. Strategies for Continual Improvement:
  15. Process Maturity Models;
  16. Emerging Best Practice in Technical Checking, Security Testing & Incident Management;
  17. The Human Factor – Tips & Techniques for Staff Training & Awareness
  18. Case Study

An awareness of ISO27001 would be useful but is not essential.

An awareness of ISO27001 would be useful but is not essential.

An awareness of ISO27001 would be useful but is not essential.

Who is this course suitable for?

The course is designed for those individuals whose role requires them to have a broad understanding of current trends in information security, aware of new and emerging regulation, best practice standards, technical standards and evolving best practice in reviewing and improving an ISMS.  

Typical delegates to this course include:

  • Information Security Managers,
  • Chief Information Security Officers,
  • Board directors;
  • IT executives (CIOs, CISOs CTOs);
  • IT managers;
  • IT auditors; business, risk and compliance managers;
  • IT-GRC professionals
  • and, of course, ISO27001 certification auditors.

An awareness of ISO27001 would be useful but is not essential.

Highly experienced trainers

This course was created and is led by Alan Calder and Steve Watkins, respectively CEO and Consultancy Director of IT Governance Ltd.

The course reflects their years of involvement with information security management and the breadth of their involvement – through training, consulting, research, writing and public speaking – on this core area of business risk management.  This course combines a high level of academic content and rigour with a highly practical guidance on implementation, liberally lit up with real life examples of effective approaches to reviewing and improving an ISMS.

Alan Calder - author of "IT Governance - a Manager's Guide", is a founder director of IT Governance Ltd.  Before that, he was CEO of Wide Learning, a supplier of e-learning, of Focus Central London and, before that, of Business Link London City Partners (BLLCP).  He was also a member of the DTI's Information Age Competitiveness Working Group.  He was for many years a member of the DNV Certification Services Certification Committee, which certifies compliance with international standards including ISO27001/BS7799.

Alan works with a wide range of clients on IT governance and information security projects which include design, implementation and deployment of management systems and the development and writing of White Papers. He also speaks at seminars and presentations on IT governance, regulatory compliance and information security.

Steve Watkins - Steve is co-author of the book on IT Governance, and Director of training & consultancy at IT Governance Ltd.

Steve is Chair of the ISO/IEC27001 User Group, the UK Chapter of the ISMS International User Group, and is UKAS's ISMS Technical Expert, advising on their assessments of certification bodies offering ISO27001 accredited certification. Steve sits on the Management Committee of the British Standards Society and is an active member of a number of technical committees responsible for drafting Standards.

Steve has held posts with HM Crown Prosecution Service Inspectorate, London Underground, Focus Central London, Business Link, a large photocopier sales and service organization and in local Government. In his various roles he has been responsible for most support disciplines. He has over 20 years' experience of managing and consulting on integrated management systems, including Information Security, Quality, Environmental and Investor in People certifications. As well as being a trained ISO 27001 and ISO 9000 lead auditor Steve is a trained EFQM Assessor and holds diplomas in safety and financial management.

The authors were responsible for the first company (BLLCP) to achieve BS 7799 registration when the standard was first promulgated in 1996. They have aided other organizations since then to implement effective information security management systems, and have been involved in the development of both the accredited certification scheme and related training standards.

Are there entry requirements?

There are no entry requirements.

There are no reviews yet.

    Share your review

    Do you have experience with this course? Submit your review and help other people make the right choice. As a thank you for your effort we will donate £1.- to Stichting Edukans.

    There are no frequently asked questions yet. If you have any more questions or need help, contact our customer service.