ISO

Lorem ipsum dolor sit amet, consetetur sadipscing elitr

An effective Information Security Management System depends upon an effective audit by a competent ISMS Auditor. Technical knowledge and practical skills are essential to become a competent Lead Auditor. Keeping this in view, TÜV Rheinland (India) Pvt. Ltd. is organising 5 days Lead Auditor Course on ISO/IEC 27001:2005 from 17th to 21st December 2012 at Bangalore.

The standard ISO/IEC 27001:2005 provides all types of industry and commerce with a useful international specification for managing and improving information security within organizations. The aim of this course is to equip students with the knowledge and skills required to perform audits of information security management systems against ISO 27001:2005, in accordance with ISO 19011 and EA 7/03.

  • TARGET AUDIENCE: IT-security representatives, management representatives and project manager involved.
  • PRE-REQUISITES:  It is recommended but not essential, that delegates attending this course have prior knowledge of Information Security and Information Security Management Systems

COURSE CONTENT

Information Security Management Systems
• ISO 27001 ff., ISO 17799, ISO 13335, BSI-standard etc.
• Introduction and interpreting
• Information security risk management
Audit-Preparation
• General and legal conditions
• Definition of targets
• Preparation of audit plans
- Audits and interviews
- Inspections
• Preparation of checklists
• Logging, monitoring, intrusion-tests

Audit-Realization

• Interviews
- Application of checklists
- Audit techniques
- Documentation
- Special audit situations and ways to cope with difficulties
• Inspections
- Application of audit plan
- Recommendations and tips
- Documentation
• Penetration-Testing
• Best practices (e.g. Secure iT)
Audit-Reporting and Follow-up actions
• Audit results
• Corrective actions
• Reporting and summary for top management

Request More Information