Course curriculum

  • 1

    ISO 27001 Lead Implementer & Auditor Course 101

    • ISO 27001 Audit Course 101

    • ISO 27001 Lead Implementer and Auditor 101

  • 2

    ISO 27000 family of Standards

    • ISO 27001 Audit Course 200a ISO family of Standards (Video Only, no notes)

    • ISO_IEC_27000_2018 free copy. Please read this.

    • ISO 27001 Audit Course 200b ISO family of Standards (Video Only, no notes)

    • ISO 27001 Audit Course 200c ISO family of Standards (Video Only, no notes)

    • ISO 27001 Audit Course 200d ISO family of Standards (Video Only, no notes)

  • 3

    Reviewing ISO 27001, ISO 27017, ISO 27018

    • Walk-through of ISO 27001 part 1

    • Walkthrough of ISO 27001 part 2

    • Walk-through of ISO 27002

    • Walk-through of ISO 27017 Cloud Security Standard

    • Walk-through of ISO 27018 PII Security Standard

  • 4

    ISO Documentation Journey

    • ISO 27001 Documentation List to focus on

    • 00 Procedures for Document Control Walkthrough

    • 00 Procedure_for_Document_and_Record_Control

    • 01 Walkthrough of Project Plan

    • 01 Project_Plan

    • 02 Walkthrough of Procedure for Identification of Requirements

    • 02 Key documents for Procedure for Identification of Requirements

    • 03 Scope Document of ISMS

    • 03 ISMS_Scope_Document

    • 04 part 1 Information Security Policy

    • 04 part 1 Information_Security_Policy

    • 04 part 2 Cloud Security Policy

    • 04 part 2 Cloud_Security_Policy

    • 04 part 3 Policy for Data Privacy in the Cloud

    • 04 part 3 Policy_for_Data_Privacy_in_the_Cloud

    • 05 Risk Assessment and its Treatment methodology

    • 05 Risk Assessment and its Treatment methodology key documents

    • 06 Statment of Applicability

    • 06 Statement_of_Applicability

    • 07 Risk_Treatment_Plan

    • 07 Risk_Treatment_Plan

  • 5

    ISO 27001 Annex A Policy and Procedures Development

    • Annex A 06 part 1 BYOD

    • 06 Bring_Your_Own_Device_BYOD_Policy documents

    • Annex A 06 part 2 Mobile device and Teleworking

    • 06 Mobile_Device_and_Teleworking_Policy documents

    • Annex A 07 Human_resource_security

    • Annex A 07 Human_resource_security documents

    • Annex A 8 Asset_management

    • Annex A 08 Asset_management Documents

    • Annex A 09 Access_control

    • Annex A 09 Access_control documents

    • Annex A 10_Cryptography

    • Annex A 10_Cryptography Documents

    • Annex A 11_Physical_and_environmental_security

    • Annex A 11_Physical_and_environmental_security Documents

    • Annex A 12_Operations_security

    • A 12 Operations_security Document

    • Annex A 13_Communications_security

    • A 13_Communications_security Document

    • Annex A 14_System_acquisition_development_and_maintenance Policy

    • A.14 System_acquisition_development_and_maintenance policy documents

    • Annex A 15_Supplier_relationships

    • A 15_Supplier_relationships Documents

    • Annex A 16_Information_security_incident_management

    • A 16 Information_security_incident_management Policy documents

    • Annex A 17_Business_Continuity

    • A 17_Business_Continuity Document

  • 6

    Training and Awareness Plan for ISMS

    • Training_and_Awareness_Plan

    • Training_and_Awareness_Plan Documentation

  • 7

    Procedure for Internal Audit

    • Procedure_for_Internal_Audit

    • Procedure_for_Internal_Audit Documents

  • 8

    Management Review Minutes & Correctve Actions Procedures

    • Management_Review_Minutes and Corrective Action Procedures and Forms

    • Management_Review_Minutes and Corrective Action Documentation