DNV

 

The ISMS Foundation course provides a general understanding of the ISO 27001 standard, the basics of risk assessment, management through a process based approach as well as how ISO 27001 can be used to develop an ISMS.

 

The Internal ISMS Auditor course provides a comprehensive understanding of the information security audit cycle, as well as the knowledge, skills and requirements of an ISMS auditor in the areas of information risk assessment, vulnerability analysis and security testing. Students will be able to prepare and plan for an audit, with the help of audit checklists.

 

The ISMS Auditor/Lead Auditor course enables the participants to interpret the requirements of ISO 27001 in the context of an external ISMS audit. Students will be able to undertake the role of an auditor to plan, conduct, report and follow up an ISMS audit in accordance with ISO 19011 - Guidelines for quality and/or environmental management systems auditing.

 

The Information Security Management System Risk Assessment course will depart skills necessary for the participant to perform a general risk assessment that is able to identify relevant risks/opportunities in their information security system, rank them and work out mitigation plans for the key risks in their company or organization. Information risk management assessment should be an integral part of any business process in any type of organisation, large or small, and within any industry sector. Performing risk assessment for information and data systems is a necessity for all businesses in order to avoid business interruption, reduce losses and ensure sustainable performance.