ISO/IEC 27001:2005 is the best practice specification that helps businesses and organisations throughout the world to develop a best-in-class Information Security Management System. This standard, together with the ISO27002 Code of Best Practice, recognise that no matter how many security products are implemented, the information in an organisation is not completely secure unless the employees are trained in security awareness policies and procedures.
As clause 8.2.2 of ISO 27002 sets out, it is now imperative that security issues are addressed at the employee level and that a firm foundation is built for an employee to understand the implications of his/her actions and be mindful of these in their daily activities.
How can you ensure that you fully comply with the staff awareness requirements of ISO27001?
e – learning technology is at the core of our commitment to helping you deliver information security awareness induction and training programmes. Developed and hosted by IT Governance, the Information Security & ISO27001 Staff Awareness course offers the following benefits:
- Online learning accessed from staff desks or at home
- Reduced cost with no travel or accommodation overhead
- Minimise time away from core work activities
- 40-minute course with a 20 minute test to assess learning effectiveness
- Can be customised for additional specific technical or commercial needs.
Positive, aware and well trained members of staff are a key part of ensuring that you fully comply with the ISO27001 standard AND protect the crucial intellectual assets of your organisation, namely your confidential information, relationships and reputation.
If you require a more intensive and trainer-lead approach to fully implementing the ISO27001 standard, we recommend that you consider attending the IT Governance ISO27001 ISMS Foundation Training Course.