Information Security Management Systems (ISMS) courses

ISMS foundation course

Who should take this course?

Those requiring an introduction to ISO 27001:2005, especially those involved in the design, implementation and management of an ISMS. (Course requirement for certification as an internal auditor on the ISMS programme)

What will I learn?

• The management systems approach to managing information security risks
• The requirements of ISO 27001:2005 and ISO 17799:2005

How long?

1 day or 20 hours by distance learning

Internal ISMS auditor course

Who should take this course?

Those who audit an organization's processes as part of the internal audit program. (Course requirement for certification as an internal auditor on the ISMS programme)

What will I learn?

• How to plan an ISMS audit
• How to audit aspects of an information security management system
• How to report a ISMS audit

How long?

2 days

ISMS auditor conversion course

Who should take this course?

Auditors with competence in another process based management system (i.e. QMS, EMS) who wish to acquire the skills and knowledge to audit against ISO 27001:2005. (Course requirement for certification as an auditor on the ISMS auditor programme)

What will I learn?

• The management systems approach to identifying and managing information security risks
• The requirements of ISO 27001:2005
• Specific ISMS audit approaches

How long?

3 days plus a 2-hour examination

ISMS auditor/lead auditor course

Who should take this course?

Those intending to acquire the competence to audit an organization's ISMS to meet the requirements of ISO 27001:2005, either as third or second party auditor. (Course requirement for certification as an auditor on the ISMS auditor programme)

What will I learn?

• The management systems approach to identifying and managing information security risks
• The requirements of ISO 27001:2005
• How to plan, complete and report the audit of an entire ISMS

How long?

5 days plus a 2-hour written examination