 |
|
Home
Site map
About Us
Legal
Contact
|
|
ISO/IEC 27001 |
|
Certified ISO/IEC 27001 & 27005 Training &
Certification
All courses offered are available under the oversight of the
Zygma's tutors all hold Personal Certification ISO 27001 Lead
Auditor qualifications, have passed PECB's Lead Auditor examination (the most
demanding of the range of qualifications offered) and have demonstrated their
teaching ability to PECB's satisfaction. All are ISO 27001 practitioners
and operate in accordance with
PECB's
Code of Ethics. Zygma's principal tutor, Richard G. Wilsher, is the technical lead in the USA's
delegation to ISO JTC1 SC27 WG1, the body which develops and maintains the ISO
27000 family of standards. He has made significant contribution to the
development of these standards and has also been a leading contributor to the
alignment of ISO/IEC 27001 and
NIST's Risk Management Framework for FISMA
Implementation. Training often involves time and cost expended in sending staff to an out-of-town location to receive their training. This has a number of downsides:
Zygma can help you get a better return for your training dollars by coming to you and providing our training in-house. Expense costs are slashed and, without diverging from the necessary syllabus to ensure that your staff can receive their personal certification, we can tailor the course to your specific needs, helping you turn the learning experience into immediate benefits relating to your organization's circumstances. Typically, as few as three attendees can make an in-house course a viable option. To explore how this can work for you please send an email to Enquiries@@Zygma.biz with the subject line 'In-house IS27001 Training', or just call us. ISO 27001 Introduction (1 day)
This one-day course introduces participants to the basic concepts of
implementing and managing an Information Security Management System (ISMS)
as specified in ISO/IEC 27001:2005. Participants will gain an
understanding of the components of an ISMS, including its scoping and policy,
risk management, performance measurement, management commitment, internal
audit, management review and continuous improvement.
NOTE - Because of this course's purely introductory nature, participants do
not receive any Personal Certification.
Certified ISO 27001 Foundation (2 days)
This course introduces
participants to the requirements for implementing and operating an Information
Security Management System (ISMS) as specified in ISO/IEC 27001:2005, as well as for selecting and implementing appropriate information
security controls. The course also explains the relationships between ISO 27001 and
other key standards in the ISO/IEC 27000 family: ISO 27002 (Code of practice for
information security management) are linked with ISO 27003
(Guidelines for the implementation of an ISMS), ISO 27004 (Measurement of information security) and ISO 27005 (Risk Management in Information Security).
This five-day intensive course develops
the expertise necessary to support an organization in implementing and managing an Information Security Management System (ISMS) based on ISO/IEC 27001:2005. Participants will also
gain an understanding of the prescribed code of practice for the selection and implementation
of information security controls from all areas of ISO 27002. The course
also adopts good practices for project management as established in ISO 10006 (Quality Management Systems - Guidelines for Quality Management in Projects).
The training is fully aligned to ISO 27003 (Guidelines for the Implementation of an ISMS), ISO 27004 (Measurement of Information Security) and ISO 27005
(Risk Management in Information Security).
This five-day intensive course
develops the expertise required to audit an Information Security Management System
(ISMS) and to manage a team of auditors by applying widely recognized audit principles,
procedures and techniques. During the course, participants will acquire the skills
and knowledge needed to proficiently plan and perform audits of systems which
are claimed to be conformant to ISO/IEC 27001:2005. Based on practical exercises, participants will
develop the abilities (mastering audit techniques) and skills (managing audit teams and audit
program, communicating with customers, conflict resolution, etc.) necessary for the efficient
prosecution of an audit.
Certified ISO 27001/FISMA Lead Implementer (5 days)
This course is under
development.
It will be based on the Lead Implementor course described above but will also
draw heavily upon knowledge within Zygma's 'FIZMA' project and will focus on
how to implement an ISO 27001-conformant ISMS in a manner which fully embraces
the requirements of FISMA and by reference the applicable NIST standards, i.e.
SP 800-39 and those others which compose the
NIST Risk Management Framework.
The course will not specifically address how to implement the detailed
requirements of each of the referenced NIST standards but will identify how the
required processes interact and should be organised from an information security
management perspective.
If you want to find out the
latest state of development of this course and when it will be rolled out,
please contact us at Enquires@@Zygma.biz, with the Subject line 'FIZMA Training'.
We will be offering some great deals on the initial piloting of this course
and anticipate retrospective personal certification for attendees once the
course is ANSI-accredited.
This course is under
development.
It will be based on the Lead Auditor course described above but will also draw
heavily upon knowledge within Zygma's 'FIZMA' project and will focus on
how to audit an ISO 27001-conformant ISMS in a manner which fully embraces the
requirements of FISMA and, by reference, NIST's applicable standards, i.e. SP 800-39 and those others which compose the
NIST Risk Management Framework.
The course will not specifically address auditing against the requirements of
the referenced NIST standards but will identify where such assessment is
required and how the prescribed processes relate to the performance of an ISMS
audit.
If you want to find out the
latest state of development of this course and when it will be rolled out,
please contact us at Enquires@@Zygma.biz, with the Subject line 'FIZMA
Training'. We will be offering some great deals on the initial piloting of
this course and anticipate retrospective personal certification for attendees once the
course is ANSI-accredited.
This is a specialist qualification available to those who hold both ISO 27001
Lead Implementer and Lead Auditor certificates.
This two-day intensive course develops the expertise required to master the basic risk
management elements related to all assets of relevance for information security using the
ISO/IEC 27005:2008 guidance standard as a reference framework. Based on practical exercises and case
studies, participants acquire the knowledge and skills necessary to perform an information security risk assessment and manage risks
over time with an effective management process. The course content aligns
directly with the requirements for the risk assessment method component of an
information security management system (ISMS), as required by ISO/IEC 27001:2005.
The courses listed below are public courses. All of them will be conducted
in English. To receive details of costs and registration please send an
email to Enquiries@@Zygma.biz with the subject line 'IS27001 Training'. The operation of these courses is subject to the number of registrations and will be confirmed within two weeks of the course, at the latest.
If you have interest in having a public course held in your
area or want to either host a public course yourself or make arrangements
to hold an in-house course
(which has real advantages for you) please contact us (at Enquiries@@Zygma.biz) to
discuss your needs and make appropriate arrangements. Zygma is able to
offer these courses throughout North America, Europe and other geographic
regions. Please enquire as to our availability.
|
© 1993 - 2018 Zygma Incorporated
Telephone: +1 714 797 99 42
Email: Enquiries @ Zygma.biz
All Zygma services are provided in accordance with its Ethics Policy.
Note - if you are submitting an enquiry or expect to receive email from us, please ensure that your spam filtering will accept mail from the domain 'Zygma.biz'