Information Security & Technology | Page 4

Fundamentals of Information Privacy Management System according to ISO/IEC 27701:2019

Description: At the end, the student will be able to

Understand the definitions and fundamentals of the Information Privacy Management System.
It manages to apply the specific requirements of the IPMS related to the ISO/IEC 27001:2013
It manages to apply the specific guidelines of the IPMS related to the ISO/IEC 27002:2022

Previous skills/knowledge:

Authorized Partners:

Teaching requirements:

Trainer must have as a teacher experience of Information security management system of minimum two year.

Objectives to achieve: To get the necessary knowledge and skills to:

Understand the Information Privacy Management System (IPMS) within the framework of the ISO/IEC 27701: 2019 standard through a tour of its sections.

ISO 27001 Information Security Management Systems Professional

Description:

Ability to understand the basic principles of an Information Security Management System
Abiltiy to understand the standards ISO 27001 and ISO 27002
Ability to identify the ISMS components
Ability to conduct a risk evaluation according to the ISO 27001 requirements.

Previous skills/knowledge: Basic knowledge of management systems

Authorized Partners:

Teaching requirements:

Trainer to be a qualified ISO 9001/QMS and/or other MS with knowledge in ISMS and/or ISO 27001 Lead Auditor (recom-mended)

Objectives to achieve: To get the necessary knowledge and skills to:

ISO 27001 Lead Auditor

Description:

Competencies detailed in ISO 27001 Internal Auditor MTS 007, plus

Previous skills/knowledge:

Demonstrable knowledge of ISO 27001 requirements
Demonstrable evidence of participation in ISO 27001/ISMS audits (>1 audit recommended)
Professional experience, including in quality management systems/Information Security management systems – QMS/ISMS (recommended).

Authorized Partners:

Teaching requirements:

Trainer to be a qualified ISO 27001/ISMS Lead Auditor

Objectives to achieve:

Objectives detailed in ISO 27001 Internal Auditor MTS 007, plus to get the necessary knowledge and skills to:

Apply the proper interpretation of the standard in actual audit situations
Plan the audit
Carry out information security management system audits
Define the responsibilities of the audit team´s members
Know the functions and attitudes that an auditor must follow
To effectively coordinate meetings with the audit team members and/or with auditee personnel
Identify and write non-conformities and other deviations and suggest ways in which the effectiveness of corrective action might be verified.

ISO 27001 Internal Auditor

Description:

To follow the instructions of the lead auditor and support him
To collect and analyze enough evidences (e.g. through interview, observation and sampling of documentation) to determine the audit findings and define the audit conclusions
To document the audit findings
To collaborate in drafting the audit report
To interchange information with the rest of the members of the audit team and with the auditee personnel.

Previous skills/knowledge:

Demonstrable knowledge of ISO 27001 requirements
Professional experience, including in quality management systems/information security management systems – QMS/ISMS (recommended).

Authorized Partners:

Teaching requirements:

Trainer to be a qualified ISO 27001/ISMS Lead Auditor

Objectives to achieve: To get the necessary knowledge and skills to:

Be qualifiable as ISO 27001/ISMS internal auditor (additional requirements from qualifying entity may apply)
Understand the principles of internal audit
Be able to assume responsibilities in any activity of the internal auditing process
Understand the functions and competencies that any auditor must have to carry out first, second party, and certification audits
Be able to apply auditing guidelines to ISO 27001/ISMS internal audits.

1 2 3 4

Search form