Is your organisation implementing the COBIT IT governance framework?
Closely aligned with ISO27001, the ISO/IEC 27002:2005 standard serves as a practical guideline for all members of staff as they initiate, implement and maintain information security. An understanding of the best practice guidance as outlined in ISO27002 is essential to achieving the goals of COBIT.
COBIT is an IT governance control framework that helps organisations meet today’s business challenges in the areas of regulatory compliance, risk management and aligning IT strategy with organisational goals. Although information security is one of these goals, COBIT does not supply any guidance to how to achieve this objective. This is provided by the ISO27002 Standard which draws on the experience of practitioners in over 40 countries to set out best practice for the delivery of an effective information security programme.
|Information Security Foundation based on ISO/IEC 27002
|The one-day Information Security Foundation based on ISO/IEC 27002 training course is designed for anyone in an organisation who is responsible for the security of information assets and directly supports the implementation of COBIT.|
Delegates attending the course will learn about:
- Information and data relationships (security, governance, assurance)
- Defining threats and vulnerabilities and understanding Risk Management
- Risk analysis with Impacts, Likelihood and Probability
- Required policies and an Information Security Plan
- External relationships with 3rd party organisations
- Protective marking and the relationship to Impact (Risk)
Achieve EXIN Certification
The Information Security Foundation based on ISO/IEC 27002 course is based on the EXIN Information Security Foundation syllabus and prepares delegates for the EXIN ISFS examination which is taken at the end of the day. Successful candidates will be awarded the EXIN Information Security Foundation Certificate.