Course curriculum and duration
Section 1
·Introduction to the information security management system (ISMS) and ISO/IEC 27001 new standard; comparative analysis
·Course objectives and structure
·Fundamental concepts and principles of information security
·Information security management system (ISMS)
Section 2
·Audit principles, preparation, and initiation of an audit
·Audit concepts and principles and the impact of trends and technology in auditing
·Risk-based auditing based on evidences and Initiation of Stage 1 audit.
Section 3
·On-site audit process and controls to be examined
·Preparing for stage 2 audit and communicating to all team members for updates
·Preparation of audit test plans to test controls in Annexure A
Section 4
·Documenting audit findings and preparing gap or nonconformity reports.
·Audit documentation and quality review.
·Closing of the audit
·Evaluation of action plans by the auditor
·Maintaining the ISMS beyond the initial audit and managing an internal audit program
·Q/A session, doubt clearing session and closure of the training course
Last Day - Certification Exam
Final Assessment
·Q/A session & some case studies
·Small test (MCQ)
·Any clarification on request
Training Takeaway
•Key changes between ISO 27002:2013 and ISO 27002:2022
•Difference between ISO 27001 and ISO 27002
•New ‘attribute’ feature
•Changes to the main management system clauses
•Changes in Annex A controls
•Transitioning over to the new Standard
TRAINER PROFILES
Priti Sikdar
EVP Risk Advisory & Training, Riskpro India
Priti is an Information security and Data privacy professional with over 25 years of experience in IT sector. She has vast experience in implementation of systems to comply with ISO 27001, GDPR, Privacy Shield and GLBA, conducting ISMS audits, security and privacy risk assessments as well as SOC 2 audits. Priti has worked for leading firms such as Grant Thornton, KPMG London and Sharp & Tannan.
Ritu A Thakkar
Vice President- IT Risk Advisory, Riskpro India
Ritu is leading expert on Cybersecurity and Information security professional with over 18+ years of experience in implementing, training, and audits in ISMS, ISO 27001, ISO 9001, ISO 31000, ISO 22301, SOC 2, ISAE 3402, ERM, ITIL, GDPR, HIPAA, NIST & COSO, Enterprise Risk Management, ITGC, ITAC, Quality Management, QMS, Lean, QAI, Process Implementation, IT operations, CMMI, Agile and Software Development Lifecycle (SDLC), internal audits, threat intelligence, data protection, and compliance management.
2 TRAINING BATCHES AVAILABLE:
Evening Batch in December 2022
19th – 26th December 2022
5:30 PM - 8:30 PM IST
Final Assessment:
27th December 2022
10 AM to 11:30 AM IST
Full Day Batch in January 2023
11th – 14th January 2023
10 AM – 5 PM IST
Final Assessment:
16th January 2023
10 AM to 11:30 AM IST
TRAINING FEES PER PERSON PER BATCH:
Rs. 22,000 + 18% GST
FOR REGISTRATION, PLEASE CONTACT:
Priti Sikdar
Executive Vice President
9930721992
Anuj Bhatia
Manager- Sales and Corporate Training
9819315309