ISO 27001 Training

Content

Day 1: Key Points of the Standard

• • What is information security? Definitions and theories.
  • Organizing information security work.
  • Process control of information security according to PDCA (Plan, Do, Check, Act).
  • Risk assessment and risk management.
  • Asset management and information classification.
  • Information security and legal aspects.
  • GDPR – General Data Protection Regulation and its practical implications.
  • The framework – policies, guidelines, and procedures.
  • Benefits of integrating the information security management system into an existing management system, such as ISO 9001.

Does your organization already have a management system, e.g., ISO 9001? In that case, there are significant advantages to integrating the information security management system into your existing management system.

Day 2: Implementing Security Controls according to ISO 27001:2022 Appendix A

• Review of security controls in ISO 27001:2022 Appendix A.
• Using ISO 27002 as guidance for implementing the controls.
• Practical tips and methods for applying security controls.
• Integration of security measures into organizational processes.

No prior knowledge is required to participate in this course.

For those with solid knowledge of ISO 9001 or for organizations transitioning from ISO 27001:2013, it is possible to attend only Day 2.

Course duration: 2 days: 10,000 SEK per person excl. VAT. Documentation is included.

Course duration: 1 day: 6,000 SEK per person excl. VAT. Documentation is included.

Course Dates