ISO 27001:2017 Introduction Course

This one hour ISO 27001 Introduction course is aimed at those new to ISO 27001:2017 Information Security Management Systems. This course can be used by all organisations to introduce their employees and increase their awareness of ISO 27001:2017 requirements. Delegates have 180 day access to the course material. Upon successful completion, a certificate is awarded

  • Awareness

    Go through some of the key requirements of ISO 27001:2017

  • Business Performance

    Understand the benefits of how ISO 27001:2017 can help your organisation

  • Education

    Start your journey to become an expert in ISO 27001 beginning with this introduction course

Course curriculum

    1. The Breach

      FREE PREVIEW

    2. Defining Information Security

    3. Understanding Information Security: Beyond Digital

    4. Conclusion

    5. Introducing the CIA Triad

    6. CIA Triad - A Real World Application

    7. Why all 3 Matter Equally

    8. The Secret Weapon

    9. What is an Information Asset

    10. Threats and vulnerabilities

    11. The Modern Threat Landscape

    12. Threat Landscape Overview

    13. What a Management System Does

    14. PDCA Cycle

    15. Your Role Helping Companies Become Successful

    16. Unit 01 Quiz

    1. The Evolution of ISO 27001: From BS 7799 to the 2022 Update

    2. Why the standard keeps evolving

    3. What ISO 27001 actually requires

    4. Why ISO 27001 Certification is Essential for Modern Businesses

    5. ISMS Scope

    6. Key Changes in the 2022 Revision

    7. Evolution not Revolution

    8. Annex A restructured — from 114 to 93 controls in 4 themes

    9. The 11 New Security Controls

    10. ISO 27001 Vs ISO 27002

    11. Mastering ISO 27002

    12. ISO 27000 Family

    13. Unit 02 Recap

    14. Unit 02 Quiz

    1. The High Level Structure

    2. What the High Level Structure is

    3. PDCA Cycle

    4. Understanding ISO 27001:2022 Clauses 1 to 3

    5. Clause 4 - Context of Organisation

    6. Clause 5 - Leadership

    7. Clause 4 & 5 Close

    8. Clause 6 - Planning

    9. Clause 7 - Support

    10. Clause 8 - Operation

    11. Clause 9 - Performance Evaluation

    12. Clause 10 Improvement

    13. Close of Unit 03

    14. Unit 3 Quiz

    1. Why Risk is Everything

    2. What risk-based thinking means in ISO 27001

    3. The Risk Assessment Process — Overview

    4. Risked Based Thinking Close

    5. Building the Information Asset Register

    6. Identifying Threats

    7. Identifying Vulnerabilities

    8. The Three inputs to Risk Identification

    9. Likelihood and Impact — the Two Dimensions of Risk

    10. Risk Evaluation Applying Acceptance Criteria

    11. Moving from Scoring to Treatment

    12. The Four Treatment Options

    13. Control selection and Annex A

    14. Residual Risk - What's Left After Treatment

    15. The Risk Treatment Plan

    16. Real World Risk Management In Action

    17. Branching Scenario — Cloud migration risk assessment at TechServe Ltd

    18. Unit 4 Quiz

    19. Unit 4 Resources for Download

    1. Unit 05 Introduction

    2. What Annex A is — and what it isn't

    3. From 114 to 93 — what the restructure means in practice

    4. Overview of the four themes

    5. Organisational controls — 37 controls

    6. People controls — 8 controls

    7. Physical controls — 14 controls

    8. Technological controls — 34 controls

    9. Why the new controls matter

    10. The eleven new controls — deep dive

    11. Annex A Control Themes

    12. What The SOA Must Contain

    13. How control selection works — the process

About this course

  • £250.00
  • 76 lessons
  • 2 hours of video content