Understand the requirements and principles of ISO/IEC 27001:2022, the latest international standard for information security management systems (ISMS), on this 1-day practical Introduction to ISO 27001 training course.

Through interactive workshops and presentations led by highly experienced tutors, delegates will develop their understanding of ISO 27001, including its scope, structure and requirements. They will explore key topics, including the determination of risks and vulnerabilities to an ISMS, Annex SL, and the benefits and considerations of certification, with the aim of maintaining or achieving ISO 27001 compliance.

Delegates will leave the course with an understanding of what is needed for an effective ISMS, and all students completing the course will be provided with a certificate.

This course is suitable for:

  • those seeking to gain knowledge of information security management systems (ISMS) and an understanding of ISO 27001:2022 requirements
  • anyone responsible for managing information security within an organisation
  • those who wish to assess if they should obtain certification to ISO 27001
  • senior managers involved in the outcome of ISMS system audits
  • those who are new to auditing and ISO 27001 and would like to develop a foundation of knowledge prior to undertaking internal auditor and/or lead auditor training

The training course meets the prior knowledge requirements for the ISO 27001 Internal Auditor and CQI and IRCA certified ISO 27001 Lead Auditor training courses. When booked with either of these training courses a discount of £100 will be applied.

Topics covered on the course include:

  • data security and information security in the current environment
  • overview of the information security management system (ISMS) standard ISO 27001:2022
  • assessing potential threats and vulnerabilities from a variety of sources
  • core structure to ISO 27001, Annex SL, and its potential to be aligned with other popular standards, including ISO 9001 and ISO 14001
  • other standards in the ISO 27000 family, including ISO 27000 and ISO 27002
  • risk management
  • Annex A controls
  • benefits and considerations of certification to ISO 27001
  • sources of information and further development

An indicative agenda for this 1-day training course is outlined below:

  • WELCOME AND INTRODUCTION
  • Module 1 Information Security
  • Module 2 Information Security Management Systems
  • Workshop 1 What are your current issues?
  • Workshop 2 The Cloud – Benefits and Risks
  • Module 3 Risk Management
  • Workshop 3 Risk Assessment
  • LUNCH
  • Module 4 Annex A Controls
  • Workshop 4 ISO 27001:2022 Annex A Controls
  • Module 5 Aligned Standards
  • Module 6 ISMS Considerations and Features
  • Module 7 ISO 27001 Certification
  • Module 8 Knowledge Quiz
  • CLOSE

On completion of this Introduction to ISO 27001 course, delegates will understand:

  • the meaning of ‘information security’, ‘management systems’ and other key terminology
  • the requirements and principles of ISO 27001 and how they apply in practice
  • potential threats and vulnerabilities that an information security management system (ISMS) may encounter
  • the ISO 27001 certification process

A certificate of completion will be awarded to delegates who attend and fully participate in the course, in recognition of their new knowledge and understanding of ISO 27001.

Introduction to ISO 27001 Certificate