Overview
With growing trends of information security breaches, security of vital information is of critical importance.
This One Day Workshop, is designed to help you appreciate how to secure your key Information Assets keeping in mind best practices – ISO 17799 and BS7799-2:2002 specifications.
It will give an overview on how to implement and maintain an Information Security Management System according to the standards.

Course Benefits
• Understand the purpose of an information security management system (ISMS)
• Overview of the processes involved in establishing, implementing, operating, monitoring, reviewing and improving an ISMS as defined in ISO/IEC ISO 17799/BS 7799 -2:2002
• Understand and ask the pertinent questions required for a ISO 17799/BS 7799 Gap Analysis
• Exposure to Risk Assessment and Treatment techniques
• Guide to select requisite controls based on BS7799.

Who should attend?
• IT Heads and Senior Management responsible for implementing managing a formal ISMS.
• IT and Quality professionals.
• Consultants who wish to advice on BS7799 methodology.
• Existing Security professionals
Required Prerequisites
• This course does not require a prior knowledge of the standard

Course Outline
• Introduction to information security and threats.
• Business approach to establishing, implementing and maintaining an Information Security Management System
• Background to the ISO/IEC 17799/ BS 7799 standards
• Business applications of the ISO/IEC 17799/ BS 7799 standards
• Process of building an Information Security Management system (ISMS) after conducting
• Risk Assessment
• Risk Management
• Control selection.
• Policy Design, Development and Maintenance
• BS7799 controls – a short overview
• Roadmap to BS7799 certification
• BS 7799 Audits

Award of Certificate
• Certificate of Attendance will be given to participants who have attended at least 90% of the class.