This training is designed to provide an understanding of the principles of information security management systems and their role in ensuring control and improvement. The course is based around the requirements of the Information Security Management System Standard ISO/IEC 27001 and deals with its interpretation and the performance of value-added auditing.
Information is a business critical asset because it drives growth and forms the backbone of organization. But the security of this asset is often overlooked, which is why over 80% of security breaches stem from within the organization as a result of poor policy, procedures and staff awareness training. Hence organizations are exploring the benefits of complying or certifying to ISO/IEC 27001:2013 ( earlier known as ISO 27001:2005 till Sep 2013) as it provides a baseline minimum set of controls which cover the people, places and process requirements you need in order to provide staff, suppliers and customers with confidence in your data security. Certifying to the standard can give a real competitive edge in today's technology led environment and we have a proven track record in taking companies through the process to successful accreditation.