Implementing ISO 27001

This training is intended for founders/managers of small companies that want to set up an information security management system based on the international standard ISO 27001, or people new to the information security officer role. In this course you will learn the principles and high level structure of ISO 27001, how to implement it in practice and how certifications and audits work.

Why this training

Many companies handle confidential or personal data, and must protect this data. The standard ISO 27001 is the best known standard for information security, and is often used by companies to set up an ISMS: an Information Security Management System. One benefit of this standard is that it is certifiable: once the ISMS is implemented, you can ask an external firm for audit and certification.

For many smaller and medium sized companies, it is more effective to have internal staff take on information security roles with minimal external support. This training gives you the knowledge needed to start as a security officer or set up the ISMS as a founder.

Course content

• Background information security
• Which documents do you need?
• How do you develop your own information security policy?
• What are the certification options?

Times and duration

This is a three hour, digital course delivered via google meet. The training is done in a small group (max 10 people) and a live trainer who will ask and answer questions. You will receive all presented material and links to all recommended templates after the training.

How to book?

For information on date, please take a look at our training calendar.

Image credit: @jimmyp9751 via Unsplash