HKQAA 香港品質保證局

Implementation of ISO/IEC 27001:2013 Information Security Management Systems (E-learning)

This course is ideal for anyone involved in or responsible for implementing an Information Security Management System (ISMS) that conforms with ISO 27001:

Prerequisite

The participants should have a basic understanding of IT Security and Risk Management

Course contents

The role and structure of an information security policy
How to determine the scope of your ISMS
How to identify information assets and information asset ownership
How to carry out the information security risk assessment (the core competence of information security management)
How to identify threats, vulnerabilities and impacts
The benefits of key issues in selecting a risk assessment tool
Writing policies and producing other critical documentation
The importance of staff and general awareness training
The key elements of management review
How to manage and drive continual improvement
How to prepare for your ISO 27001 certification audit
Understand and the application of ISO27001 Annex Clauses

Delivery method

Presentation, discussion, case study, workshops and group activities

Certificate of attendance

Certificate of Attendance will be issued to participants who have attended more than 90% of the enrolled course hours
To provide a more comprehensive certificate service, please fill in the participant's name according to the identity document (as standard) when submitting the application form.

Click here to explore classroom training schedule

Should you have any questions, please free feel to contact Ms. Joanne Chan during office hour.

Tel: (852) 2202-9330 / (852) 6050-8153 Email: training@hkqaa.org

Office Hour: 9 a.m. to 6 p.m. (Monday to Friday)