ISO 27001 Foundation
€ Upon Request (up to 10 people)
*VAT not included
Duration: 16 hours Time: Working hours
The ISO/IEC 27001 Foundation training allows participants to acquire knowledge about best practices for implementing and managing an Information Security Management System (ISMS), as specified in the ISO/IEC 27001:2022 standard.
- Members of an information security team
- IT Specialists
- People involved in the implementation of ISO 27001
- Technical personnel involved in ISMS related operations
- Auditors
- Understand the implementation of an ISMS according to ISO/IEC 27001:2022;
- Understand the relationships between ISMS components and compliance with the requirements of the organization's various stakeholders;
- Know the concepts, approaches, standards, methods and techniques that allow an effective management of an ISMS in accordance with the ISO/IEC 27001:2022 standard;
- Acquire skills to support an organization in implementing the ISO/IEC 27001:2022 standard.
General knowledge of English.
- Mission, vision and policy of the company's ISMS;
- Framework scope statement;
- Information security objectives and action plan for the objectives;
- Overview of ISMS requirements;
- ISMS code of practice and implementation guidelines on controls (ISO/IEC 27002);
- Overview of documentation requirements;
- Risk assessment and treatment;
- Conducting internal audits and management review meeting;
- Corrective action and effectiveness of corrective action.
Luís Azevedo is an auditor and auditor trainer at APCER, Member of the Board of itSMF Portugal responsible for ICT standardization and member of several national, European and international standardization technical commissions. Founder and Senior Consultant at CERTIBEST, he was Director of Management Systems at Focus2Comply, Audit and Quality Coordinator and Information Security Manager at the Instituto de Informática at Seg.Social, and before that he held various roles related to systems and information technologies . He holds a Master's degree in information systems management, a specialization diploma in IT governance, a degree in management informatics and several relevant professional certifications such as implementer, auditor and trainer.