Course Description:
This course is providing comprehensive training for the practical ISMS Implementation guidelines to the delegates who are responsible for establishing, implementing and maintaining the information security management system (ISMS) in the organization. Meanwhile, this course would be helpful for assigned ISMS implementer to understand the methodology for achieving the certification of new ISMS. The delegates will learn the introduction concept of information security, step by step of process approach, the detail of each requirement including security controls required by standard, including the certification process.
Course Objectives:
At the end of this course you will be able to:
Understand overview concept of information security and ISO 27001:2013 standard.
Define ISMS implementation plan and resource required to the plan.
Identify the information security organization and appropriate resources.
Understand overview concept of Information security risk assessment and risk treatment.
Define information security asset and its threats including risk related to them.
Define risk treatment plan in order to mitigate information security risk of the organization.
Identify the effective measurement of controls.
Understand how to develop ISMS policy and related support documents.
Identify ISMS documents using for your organization.
Define communication plan and training plan.
Understand the technique of information security operation control in the organization.
Duration : 3 Days (9:00 - 16:30)
Fee : 21,900 Baht exclude VAT (Early Bird 19,900Baht exclude VAT)
(Fee includes Course Material + Coffee Break and Lunch)
Instructor: A.Wanpen Puangrat
IRCA ISO 27001 LEAD AUDITOR, IRCA ISO 20000 AUDITOR, ITIL v3,
Training Schedule:
23-25 June 2014
8-10 October 2014
Training Venue: Conference Center, 4th Floor,Q-House Lumpini, 1 South Sathorn Rd (near MRT Lumpini Station Exit 2) >> See Map
Who Should Attend:
IT Security Manager/IT Security Officer
IT Manager
ISMS Implementation Team
IT Auditor
IT Consultant
Course Outline:
Day 1
Module 1: Introduction to Information Security Management System (ISMS)
Module 2: Initiating ISMS implementation approach
Module 3: Understanding the organization context
Module 4: Identify Information Security Roles and Responsibilities
Module 5: Conducting ISMS Gap analysis
Module 6: Determination Top Level of Security Policy
Day 2
Module 7: Risk management methodologies
Module 8: Identify the effectiveness measurement of controls
Module 9: Developing Statement of Applicability (SoA)
Module 10: ISO 27001 controls walkthrough
Module 11: ISMS document system
Module 12: ISMS communication and awareness training
Day 3
Module 13: Information security operation controlling
Module 14: Internal ISMS audit
Module 15: Corrective action and improvement
Module 16: Management review
Module 17: Readiness check before Certify Audit
Module 18: Certification process
Module 19: Maintaining the ISMS in the organization
Online Registration >> HERE
Payment Condition :
Payment may be paid in full or 50% deposit at least 7 days prior to the start of the course. The payment could be paid by the following methods
- Account transfer to "IMC Institute" Saving account no. 616-2-07327-1 , Kasikorn Bank, Sathorn Square Branch.
or
- Cheque should be made payable to "IMC Institute"
Notes:
In case you choose to pay 50% deposit, we would request the remaining 50% to be paid at the registration desk before the beginning of the course.
Contact Person :
For more information, contact our course coordinator on:
Ms.Kwanhathai Thavornpong / Ms.Mailada Moungmaitong
Mobile: 087-593-7974, 088-192-7975 , 090-992-9916
Tel: 02-610-3687
E-mail: kwanhathai@imcinstitute.com / mailada@imcinstitute.com /
contact@imcinstitute.com
