ISO 27001 Training Course - Training course on information security risk analysis and establishing measures to address the risks

ISO/ IEC 27001: 2013 - Information security management system - Identify risks and establish measures to address information security risks

International Organization for Standardization (ISO) issued ISO/ IEC 27001: 2013 standard to provide requirements for an organization which has the desire to establish, implement, maintain and continually improve information security management systems, help organizations and enterprises review, overall audit its information security to enhance reliability and added value for the organization's services.

ISO/ IEC 27001: 2013 make the requirements, the applicable organizations shall:

- Establish the risk acceptance criteria, criteria for assessing information security risks and risk assessment must be repeated to produce consistent and comparable results.

- Must identify information security risks through an assessment to determine the risks related to loss of confidentiality, integrity and availability of information within the scope of its information security management system.

- Must analyze information security risks through assessing potential consequences for identified risks, assessing the possibility of occurrence risks and determining risk levels.

- To assess information security risks through comparing risk analysis results with established risk criteria and establishing priority to address risks.

- To address the information security risks: the organization should establish appropriate measures to address information security risks based on the risk assessment results and determine the necessary control measures to address the risks.

In the context, technology 4.0 develops strongly in all scope that requires the organizations to apply information technology in management as well as production and business, thus ensuring security information is becoming increasingly important. The detailed requirements in the identification and control of information security risks, the deployment of an information security management system in accordance with the requirements of ISO / IEC 27001 allows organizations, enterprises assess and address the information security risks which are facing.

To raise awareness of organizations, enterprises as well as individuals in analyzing information security risks and establishing measures to address the risks in its organization. VINTECOM International is pleased to introduce the training course of Information Security Management System ISO/ IEC 27001: 2013 as follows:

I. Mode of Training:

1. Inhouse training or Public training (Number of learner: 10-20 persons/ 01 course)

2. Training location: as required by the learner at the customer location or VINTECOM International office in Ha Noi City & Ho Chi Minh City.

3. Training subjects: individuals, organizations and enterprises in need.

4. Training time: Please contact VINTECOM International office.

II. Information of training course:

1. Training experts are approved capacity according to VINTECOM International standards, at least 7-10 years of experience in training, teaching, management consultancy or approved the lead auditor that registered by an international certification body.

2. Fully equipped the training support facilities including ISO/IEC 27001: 2013 standards for learners.

3. The course includes group practice and knowledge test exam after the end of the course.

III. Subjects should participate in the training course:

1. Internal quality auditors, personnel of ISO board.

2. The auditor of provider.

3. The key personnel at departments in the organization (to understand and properly apply ISO)

4. Middle and senior managers (to understand and direct)

5. Managers of quality management department, head of department, deputy of department and personnel of departments such as QA/ QC, IT.

IV. What do you get when you participate in the course:

1. Opportunity to learn in a professional environment, a training expert team has knowledge and skills that are approved according to VINTECOM International standards.

2. Understand the ISO/IEC 27001: 2013 standard requirements, help learners be able to apply the necessary procedures and records into real work.

3. Improve your career opportunities in identifying, controlling and addressing information security risks in the jobs that you undertake.

4. The ability to self-plan and organize the internal audit or the provider audit includes identifying risks, assessing risk levels and establishing measures to address the risks to reduce the unexpected impact, enhance the level of safety, security for information systems in accordance with the requirements of the standard.

5. Raise awareness of the value of information as well as information security control measures in the organization.

6. Ensure that you have enough necessary knowledge to convey to your employees and laborers understand how benefits of knowledge added and it will bring opportunities to them in current work.

7. Know how to solve arising problems or unexpected results in quality management to build appropriate measures to solve the current difficult problems that the factory is facing.

V. Training certificate for completing course

VINTECOM INTERNATIONAL MANAGEMENT CONSULTANCY COMPANY

Head Office: No. 5 Hoang Sam treet, Nghia Do, Cau Giay district, Ha Noi City

VINTECOM HN OFFICE

Address:   16th Floor - Green Stars City

234 Pham Van Dong Street, Bac Tu Liem District, Ha Noi City

Tel:            (024) 730.588.58/ (024) 730.333.86

Hotline:     094 886 5288

Skype:       kd.vintecom 

Email:        office-hn@vintecom.com.vn

Web:          www.vintecom.com.vn

VINTECOM HCM OFFICE

Address:  Golden City House 

182 Ha Huy Giap Street, District 12, Ho Chi Minh City

Contact:   Ms. Pham Thu Ha 

Tel:           (028) 7300 7588  

Hotline:     0938 083 998

Email:       office-hcm@vintecom.com.vn