ISMSI
Information Security Management System (ISO 27001) Implementation


ISMSI Course Introduction

Security breach! System compromised! System failure! Organization must be prepared to respond in a proactive fashion to these ever-increasing challenges to information security issue. In this 3-days course, attendee will gain essential knowledge and practical approach to secure their valuable asset "information". Both those in need and do not need an ISO certification can attend this course.


ISMSI Course Objectives

  • To understand principle in information security management
  • To understand ISO/IEC 27001:2013 requirements
  • To understand practical approach for risk assessment
  • To understand controls based on ISO/IEC 27002:2013


Target Group

  • IT Manager
  • Chief Information Security Officer
  • Information Security Officer
  • Security Manager
  • Security Consultant


Course Outline of ISMSI

Day 1

  • Fundamental Principle in Information Security
  • International Standards and Leading Practices
  • Context of the Organization
  • Leadership
  • Planning
  • Support
  • Operation
  • Performance Evaluation
  • Improvement

Day 2

  • Information Security Risk Management
  • Statement of Applicability
  • Information Security Risk Treatment Plan
  • Risk Assessment Methods
  • (A.5) Information Security Policies
  • (A.6) Organization of Information Security
  • (A.7) Human Resource Securityl
  • (A.8) Asset Management
  • (A.9) Access Control

Day 3

  • (A.10) Cryptography
  • (A.11) Physical and Environmental Security
  • (A.12) Operations Security
  • (A.13) Communications Security
  • (A.14) System Acquisition, Development and Maintenance
  • (A.15) Supplier Relationships
  • (A.16) Information Security Incident Management
  • (A.17) Information Security Aspects of Business Continuity Management
  • (A.18) Compliance

8-10 May 2019

Course Level

Intermediate

Duration

3 Days

Tuition Fee

21,000.00 THB

Speaker

A.Choonhaphan Lerlertpakdee
CISA, CISM, CGEIT, CRISC, CIPT, MBCI, ITIL Expert, PMP, BCMS (ISO 22301) Provisional Auditor, ISMS (ISO 27001) Provisional Auditor, ITSMS (ISO 20000) Provisional Auditor