Why Choose this Course?
Information is the lifeblood to all organisations, without it, it would be severely impacted and ultimately cease to function. Information is knowledge and knowledge is power. With an ever changing climate of technology and threats (both technical and human), the need for trained security personnel to protect our information becomes increasingly critical evolutionary task.
Information is at risk from many sources, legal, electronic, physical, internal and external to mention a few. It is paramount that security and related management personnel have an understanding of the risks, controls and countermeasures that are available to secure information and technology within an effective management framework. Furthermore utilising countermeasures, best practice and management techniques will mitigate electronic and physical risks and enhance protection to an organisation.
What are the Goals?
On successful completion of this Anderson training course, delegates will be able to have:
- Knowledge of the concepts relating to information security management (confidentiality, integrity, availability, vulnerability, threats, risks, counter measures, etc).
- Understanding of current legislation and regulations which impact upon information security management.
- Awareness of current national and international standards such as ISO 27002, frameworks and organisations which facilitate the management of information security.
- Understanding of the current business and common technical environments in which information security management has to operate.
- Knowledge of the categorisation, operation and effectiveness of controls of different types and characteristics.
Who is this Course for?
The Anderson training course has been designed for individuals responsible for Risk Management, IT Security and IT Security Auditing, Technical IT Management and those with involvement of systems integration and corporate IT development. Financial controllers with a technical interest may also benefit from the seminar.
How will this be Presented?
Participants will gain detailed knowledge by active participation in seminars, group discussions and real life case studies.
Delivery will be by presentation, group syndicate investigations, training DVD and interactive seminars.
The Course Content
Day One: Information Security Management - An Overview
- IT Risk Management
- Categorising Physical and Electronic Risk
- IT and Networks
- Computer Systems Design
- Legal and Regulatory Considerations
- Information, Business and Risk – Case Study
Day Two: Information Security Management
- Ensuring Information Security
- Confidentiality
- Integrity
- Availability
- Authenticity
- Non Repudiation of Data
- Ethical hacking and Industrial Espionage
- Where to design and place effective computer and management controls
- Case Study
Day Three: Information Management - International Standards
- Code or Practice for Information Security Management – ISO 17799 / ISO27002
- Best Practice and Implementing Guidance and Controls For ISO 27002
- Information Security Management Overview
- Risk Assessment and Controls
- Security Policy Documentation
- Organising Information Security Management
- IT Asset Management
- Personnel and Human Resources
Day Four: Information Management ISO 27002
- Best Practice and Implementing Guidance and Controls For ISO 27002
- Physical and Environmental Security
- Operations Management and Communications
- Access Control
- Information Systems (Design, Development, Maintenance)
- Incident Management
- Business Continuity
- Regulatory Compliance
- Best Practice and Implementation Guidance for BS ISO/IEC 38500:2008 – IT Management
- Case Study
Day Five: Implementing Effective Information Security Management Framewoks
- Successful steps for IT Security Management
- Audit and Compliance for IT Resources
- Business Process Engineering
- Case Study
The Certificate
- Anderson Certificate of Completion will be provided to delegates who attend and complete the course.
© 2018. Material published by Anderson shown here is copyrighted. All rights reserved. Any unauthorized copying, distribution, use,dissemination, downloading, storing (in any medium), transmission, reproduction or reliance in whole or any part of this course outline is prohibited and will constitute an infringement of copyright.
Explore our Full Portfolio of Training Courses
Our portfolio of more than 200 training courses are currently designed to address the current training needs of our
clients incorporating latest trends and internationally accepted best practices, in each distinct subject area.
Sending your message. Please wait...
Send Successfully
There was a problem sending your message. Please try again.
Please complete all the fields in the form before sending.
Sending your message. Please wait...
Click Here To PrintThere was a problem sending your message. Please try again.
Please complete all the fields in the form before sending.
Sending your message. Please wait...
Click here to download PDF fileThere was a problem sending your message. Please try again.
Please complete all the fields in the form before sending.