Please be informed that this site uses cookies.

+971 56 800 6744

+971 2 622 2605

Course Description

.

Due to the advanced technologies, globalization and the dependance on electronic information in all industries and business; every organization became a target for cyber attackers, and virous threats.

Data breaches are becoming more severe, yet many organizations still assume they will never suffer one. However, you should adopt a ‘when not if’ mentality if you want to protect your business. Effective defenses can prevent the majority of attacks and help you to prepare for a breach. Robust cyber security requires an ISMS (information security & cyber security management system) built on three pillars: people, processes and technology.

On day 5; there will be a written exam (or shared on screen) to the participants covering the Information Security and Cyber Security Management System Implementation training course reference to ISO 27001:2022 Guidelines. The exam is not intended for qualification rather than for knowledge check after course completion.

Course Objectives

Upon the successful completion of this course, each participant will be able to:
  • Equip comprehensive understanding of the Information Security Management System (ISMS) standard in an efficient and effective manner.
  • Gain an in-depth look into ISMS, the internationally recognized information security standard.
  • Plan, lead, and report on an ISMS.
  • Gain more experience and training in ISMS, and anyone who needs to understand the principles underlying an ISMS.
  • Gain comprehensive understanding of the internationally recognized information security standard and the practical skills necessary to implement in the organization
  • Gain Understanding of the International Organization of Standardization (history, structure, purpose) and types of ISO Standards (Technical, MS certification, Accreditation).
  • Understand the concepts of PDCA cycle and process approach
  • Understand the risk management process and concepts
  • Full understanding and interpretations of the requirements of ISO 27001:2022 clauses/subclauses.
  • Capability to establish a documented information security system in the organization.
  • Conduct internal audits on the ISMS
  • Preparation for external certification

Who Should Attend?

This course is designed for managers and consultants responsible for the ISMS Management System, individuals maintaining ISMS conformance, technical experts preparing for and participating in ISMS, Management Representatives (MRs), IT and information security personnel, and internal auditors in management systems.

Course Agenda

Registration​

Welcome & Introduction

Pre-Test

Introduction to the International Organization for standardization (ISO) and the types of ISO Standards

Introduction to the concept of Process approach

Introduction to the concept of PDCA cycle

Introduction to the Risk Management Process

Introduction to Security Management System

Change to the new standard

Terms and definitions of Security Management System

Information security controls and policies 

(Structure of ISO 22001:2022 Requirements)

Clause 4: Context of the organization

Clause 5: Leadership

Clause 6: Planning

Clause 7: Support of the service management system

Clause 8: Operation of the service management system

Clause 9: Performance evaluation

Clause 10: Improvement

Understanding of Audit definition / types / principles ISO 19011 Guidelines of auditing management systems including;

  • Audit process, program definition, types, principles and responsibilities
  • Auditor competence, qualification requirements and the evaluation and selecting the audit team
  • Audit planning, preparation and communication with audit team and auditee function/s
  • Audit types and audit objectives, scope, criteria
  • Audit stages (stage one-document review & stage two-implementation and verification)
  • Audit techniques and methodologies, process verification and audit sampling for objective evidence
  • Recording and reporting of non-conformance and non-conformance classification
  • Case studies and audit scenarios to identify non-conformities
  • Audit report and follow up on corrective actions for closure and effectiveness
  • Audit conclusion and recommendations
  • Course review and group quizzes in auditing

End of the Course

Assessment Methodology

All certified courses conducted by EdTech will begin with a pre-evaluation to assess participants' initial knowledge and skills, allowing instructors to tailor the course content accordingly. Throughout the course, participants will engage in structured learning activities, with ongoing assessments to monitor progress. The course will conclude with a certification exam designed to evaluate the participants' mastery of the material. Those who pass the exam will be awarded a certification that reflects the course title, indicating they have met the required standards of knowledge and competency.

Training Methodology

Facilitated by a highly qualified specialist, who has extensive knowledge and experience; this program will be conducted using extensively interactive methods, encouraging participants to share their own experiences and apply the program material to real-life work situations in order to stimulate group discussions and improve the efficiency of the subject coverage.

Percentages of the total course hour classification are:

  • ​40% Theoretical lectures, Concepts and approach
  • 20% Motivation to develop individual skill and Techniques
  • 20% Case Studies and Practical Exercises
  • 20% Topic General Discussions and interaction

Course Manual

Participants will be provided with comprehensive presentation material as reference manual. This presentation material is a compilation of core valuable information, references, presentation methods and inspiring reading which will be used as a part of the material guide.

Course Certificate

At the completion of the course, all participants who successfully accomplished the required contact hours will receive an EdTech Training Participation Certificate as a testimony to their commitment to professional development and further education.

Why Edtech ?

  • Industry Experienced; Internationally Qualified Trainers
  • Hands-on Practical Sessions & Assignments
  • Intensive Study materials
  • Flexible Schedules
  • Realistic training methodology
  • High-Quality Training in Affordable Course Fees
  • Achievement Certificate, as approved by the Ministry of Education (Abu Dhabi Center for Technical and Vocational Education Training - ACTVET), HABC, AWS, IAOSHE, SHRM, etc.