Understand and implement a business continuity management system through the requirements of ISO 27001
Day 1 morning
❏ Section 1 – Introduction and definitions
❏ Reminders
❏ Definition
❏ Iso figures
❏ Section 2 – ISO 2700X standards
❏ ISO 27002 – ISO 27001 Comparison and use of the 2 standards
❏ ISO 27003 Implementation of an ISMS
❏ ISO 27004 ISMS indicators
❏ ISO 27005 Risk assessment
❏ ISO 27007 ISMS audit
❏ ISO 27008 Review of security measures
❏ ISO 27035 Security incident management
❏ ISO 27 552 ISO 27001 extension
❏ Standards vs. regulations
Jour 1 après-midi
❏ Section 3 – Management system
❏ Definition and nature of the project
❏ Integrated management system
❏ Process maturity
Day 2 morning
❏ Section 4 – Information security
❏ Introduction
❏ Definition
❏ Reminders
Day 2 afternoon
❏ Section 5 – The ISO 27001:2017 standard
❏ Introduction
❏ Context of the organisation
❏ Practical Work 1 / SWOT-ISO 27001 analysis
Day 3 morning
❏ Leadership
❏ Practical Work 2 / Designing the structure of the security policy
❏ Planning
❏ Practical Work 3 / 27001 standard and requirements for
risk management
Day 3 afternoon
❏ Planning (continued)
Practical Work 4 / DDA study
❏ Support
❏ Practical Work 5 / Safety measures
❏ Operation
❏ Performances evaluation
Day 4 morning
❏Practical Work 6 / Creation of performance indicators
❏ Performance evaluation (continued)
❏Practical Work 7 / Analysis of non-compliance
❏ Improvement
❏Practical Work 8 / Sequencing of ISO 27001 implementation
Day 5
❏ Section 6 -ISO 27001/SMSI implementation
❏ Definition and nature of the project
❏ Sequencing of the implementation
❏ Principales erreurs
Processus de certification
❏ Practical Work 9 / Audit à blanc
Understanding of current IS architectures, management of an information system (processes, documentation etc.)
Students, system administrators, information security consultants, risk managers, information systems directors