24
Oct

0

ISO 27001: Why is Information Security important for you?

ISO/IEC 27001 assists you to understand the practical approaches that are involved in the implementation of an Information Security Management System that preserves the confidentiality, integrity, and availability of information by applying a risk management process. Therefore, implementation of an information security management system that complies with all requirements of ISO/IEC 27001 enables your organisations to assess and treat information security risks that they face.

Certified ISO/IEC 27001 individuals will prove that they possess the necessary expertise to support organisations implement information security policies and procedures tailored to the organisation’s needs and promote continual improvement of the management system and organisations operations.

Moreover, you will be able to demonstrate that you have the necessary skills to support the process of integrating the information security management system into the organisation’s processes and ensure that the intended outcomes are achieved.

What is ISO/IEC 27001?

ISO/IEC 27001 provides requirements for organisations seeking to establish, implement, maintain and continually improve an information security management system. This framework serves as a guideline towards continually reviewing the safety of your information, which will exemplify reliability and add value to services of your organisation.

ISO Internationally Certified: ISO 27001: Information Security Management

Systems (ISMS):

Crest Advisory Africa is accredited by the PECB to conduct internationally accredited training with our Public Courses through our CAA Training Academy (CAATA), we also offer correspondence training and if needed, to do it on site, with our In-house Training offerings.

The training for each of the standards consists of the following modules for different audiences:

Introduction

(1 day)

  • SO/IEC 27001 Introduction training course enables you to become familiar with the basic concepts of an Information Security Management System (ISMS).

Foundation

(2 days)

  • ISO/IEC 27001 Foundation training allows you to learn the basic elements to implement and manage an Information Security Management System as specified in ISO/IEC 27001. During this training course, you will be able to understand the different modules of ISMS, including ISMS policy, procedures, performance measurements, management commitment, internal audit, management review and continual improvement.
  • After completing this course, you can sit for the exam and apply for the “PECB Certified ISO/IEC 27001 Foundation” credential. A PECB Foundation Certificate shows that you have understood the fundamental methodologies, requirements, framework and management approach.

Certified Lead Implementer

(5 days)

  • ISO/IEC 27001 Lead Implementer training enables you to develop the necessary expertise to support an organisation in establishing, implementing, managing and maintaining an Information Security Management System (ISMS) based on ISO/IEC 27001. During this training course, you will also gain a thorough understanding of the best practices of Information Security Management Systems to secure the organisation’s sensitive information and improve the overall performance and effectiveness.
  • After mastering all the necessary concepts of Information Security Management Systems, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27001 Lead Implementer” credential. By holding a PECB Lead Implementer Certificate, you will be able to demonstrate that you have the practical knowledge and professional capabilities to implement ISO/IEC 27001 in an organisation.

Certified Lead Auditor

(5 days)

  • ISO/IEC 27001 Lead Auditor training enables you to develop the necessary expertise to perform an Information Security Management System (ISMS) audit by applying widely recognised audit principles, procedures and techniques. During this training course, you will acquire the knowledge and skills to plan and carry out internal and external audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.
  • Based on practical exercises, you will be able to master audit techniques and become competent to manage an audit program, audit team, communication with customers, and conflict resolution.
  • After acquiring the necessary expertise to perform this audit, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27001 Lead Auditor” credential. By holding a PECB Lead Auditor Certificate, you will demonstrate that you have the capabilities and competencies to audit organisations based on best practices.

Based on practical exercises, you will be able to master audit techniques and become competent to manage an audit program, audit team, communication with customers, and conflict resolution.

Organisational Gap analysis against ISO/IEC 27001

Organisations will then need to perform a gap analysis to assess the nature of changes that are required in their business. Should you not feel confident in conducting a gap analysis, you may call on a CAA qualified Lead Implementer and Auditor to assist. CAA offers guidance that will lead your team to certain compliance.

Once ready, you can contact CAA to conduct a pre-certification, or readiness audit, implement corrective action and you’re good-to-go.

Contact Crest Advisory Africa (CAA):

To begin this process, click the button below to get in touch with us:

EMAIL US

 

 

 

Should you have any further questions you can contact us on:

  • Mobile: +27 (0) 76 403 4307