- الموقع: Changi - East
- مدة الدورة التدريبية: 2 Days
- مواعيد الدورة: Classroom, Weekdays, 8.30 to 5.30pm
تفاصيل الدورة
This course is conducted via SGS Singapore. All instruction and examinations are in English.
ISO/IEC 27001 is an information security management system (ISMS) standard published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). Its full name is ISO/IEC 27001– Information technology – Security techniques – Information security management systems – Requirements. ISO/IEC 27001 formally specifies a management system that is intended to bring information security under explicit management control. Being a formal specification means that it mandates specific requirements. Organizations that claim to have adopted ISO/IEC 27001 can therefore be formally audited and certified compliant with the standard.
THE STANDARD CONTAINS 11 DOMAINS(APART FROM INTRODUCTORY SECTIONS)
- Security policy - management direction
- Organization of information security - governance of information security
- Asset management - inventory and classification of information assets
- Human resources security - security aspects for employees joining, moving and leaving an organization
- Physical and environmental security - protection of the computer facilities
- Communications and operations management - management of technical security controls in systems and networks
- Access control - restriction of access rights to networks, systems, applications, functions and data
- Information systems acquisition, development and maintenance - building security into applications
- Information security incident management - anticipating and responding appropriately to information security breaches
- Business continuity management - protecting, maintaining and recovering business-critical processes and systems
- Compliance - ensuring conformance with information security policies, standards, laws and regulations
ISO/IEC 27001 REQUIRES THAT MANAGEMENT:
- Systematically examine the organization's information security risks, taking account of the threats, vulnerabilities, and impacts;
- Design and implement a coherent and comprehensive suite of information security controls and/or other forms of risk treatment (such as risk avoidance or risk transfer) to address those risks that are deemed unacceptable; and
- Adopt an overarching management process to ensure that the information security controls continue to meet the organization's information security needs on an ongoing basis.
THE KEY BENEFITS OF 27001 ARE:
- It can act as the extension of the current quality system to include security
- It provides an opportunity to identify and manage risks to key information and systems assets
- Provides confidence and assurance to trading partners and clients; acts as a marketing tool
- Allows an independent review and assurance to you on information security practices
A company may want to adopt ISO 27001 for the following reasons:
- It is suitable for protecting critical and sensitive information
- It provides a holistic, risk-based approach to secure information and compliance
- Demonstrates credibility, trust, satisfaction and confidence with stakeholders, partners, citizens and customers
- Demonstrates security status according to internationally accepted criteria
- Creates a market differentiation due to prestige, image and external goodwill
- If a company is certified once, it is accepted globally.
الموقع
نبذة عن معهد KBA Training Centre
KBA Training Centre Pte Ltd (KBAT) represents the training arm of KB Associates Group, with a significant focus on accredited safety training for the onshore and offshore industries. We provide all walks of commercial safety (both nationally and internationally accredited), MOM approved safety courses, full range of IMCA diving related courses, first aid training and many competency development programmes. KBAT provides specifically tailored training courses for offshore/inshore industry and remains the premier destination for specialised international and national accredited training.
عرض الجميع دورات KBA Training CentreIT Auditing أسئلة ذات صلة
- JavaScript Full stack web developer virtual internship Virtual Bootcamp + Internship at Laimoon1,449 درهممدة الدورة التدريبية: Upto 30 Hours
- 77 درهم
349 درهممدة الدورة التدريبية: Upto 21 Hours - Digital Forensics Examiner (CDFE) Advanced Diploma Alpha Academy93 درهم
1,469 درهممدة الدورة التدريبية: Upto 8 Hours