ISO/ IEC 27001: 2013 - Information security management system - Identify risks and establish measures to address information security risks
International Organization for Standardization (ISO) issued ISO/ IEC 27001: 2013 standard to provide requirements for an organization which has the desire to establish, implement, maintain and continually improve information security management systems, help organizations and enterprises review, overall audit its information security to enhance reliability and added value for the organization's services.
ISO/ IEC 27001: 2013 make the requirements, the applicable organizations shall:
- Establish the risk acceptance criteria, criteria for assessing information security risks and risk assessment must be repeated to produce consistent and comparable results.
- Must identify information security risks through an assessment to determine the risks related to loss of confidentiality, integrity and availability of information within the scope of its information security management system.
- Must analyze information security risks through assessing potential consequences for identified risks, assessing the possibility of occurrence risks and determining risk levels.
- To assess information security risks through comparing risk analysis results with established risk criteria and establishing priority to address risks.
- To address the information security risks: the organization should establish appropriate measures to address information security risks based on the risk assessment results and determine the necessary control measures to address the risks.
In the context, technology 4.0 develops strongly in all scope that requires the organizations to apply information technology in management as well as production and business, thus ensuring security information is becoming increasingly important. The detailed requirements in the identification and control of information security risks, the deployment of an information security management system in accordance with the requirements of ISO / IEC 27001 allows organizations, enterprises assess and address the information security risks which are facing.
To raise awareness of organizations, enterprises as well as individuals in analyzing information security risks and establishing measures to address the risks in its organization. VINTECOM International is pleased to introduce the training course of Information Security Management System ISO/ IEC 27001: 2013 as follows:
I. Mode of Training:
1. Inhouse training or Public training (Number of learner: 10-20 persons/ 01 course)
2. Training location: as required by the learner at the customer location or VINTECOM International office in Ha Noi City & Ho Chi Minh City.
3. Training subjects: individuals, organizations and enterprises in need.
4. Training time: Please contact VINTECOM International office.
II. Information of training course:
1. Training experts are approved capacity according to VINTECOM International standards, at least 7-10 years of experience in training, teaching, management consultancy or approved the lead auditor that registered by an international certification body.
2. Fully equipped the training support facilities including ISO/IEC 27001: 2013 standards for learners.
3. The course includes group practice and knowledge test exam after the end of the course.
III. Subjects should participate in the training course:
1. Internal quality auditors, personnel of ISO board.
2. The auditor of provider.
3. The key personnel at departments in the organization (to understand and properly apply ISO)
4. Middle and senior managers (to understand and direct)
5. Managers of quality management department, head of department, deputy of department and personnel of departments such as QA/ QC, IT.
IV. What do you get when you participate in the course:
1. Opportunity to learn in a professional environment, a training expert team has knowledge and skills that are approved according to VINTECOM International standards.
2. Understand the ISO/IEC 27001: 2013 standard requirements, help learners be able to apply the necessary procedures and records into real work.
3. Improve your career opportunities in identifying, controlling and addressing information security risks in the jobs that you undertake.
4. The ability to self-plan and organize the internal audit or the provider audit includes identifying risks, assessing risk levels and establishing measures to address the risks to reduce the unexpected impact, enhance the level of safety, security for information systems in accordance with the requirements of the standard.
5. Raise awareness of the value of information as well as information security control measures in the organization.
6. Ensure that you have enough necessary knowledge to convey to your employees and laborers understand how benefits of knowledge added and it will bring opportunities to them in current work.
7. Know how to solve arising problems or unexpected results in quality management to build appropriate measures to solve the current difficult problems that the factory is facing.
V. Training certificate for completing course
Learners fully participate in the course duration and take the exam to reach at least 55/70 points for the internal auditor and 75/100 for the lead auditor and the auditor of provider will get the certificate that is issued by VINTECOM International.
|
*** Contact us to register for Training course ISO 27001: 2013
Customers, organizations and enterprises require the Training course of
Information Security management
system ISO/IEC 27001: 2013, please click on "Registration - Quotation" or on the right toolbar below the PC screen to receive a Quotation for this services.
|
|
*** Further information, Please contact us as below:
- VINTECOM International Office in Ha Noi City: 16th Floor - Green Stars City, 234 Pham Van Dong, Bac Tu Liem District, Ha Noi City. Hotline 094-886-5288/ (024) 730-588-58
- VINTECOM International Office in Ho Chi Minh City: Golden City House - 182 Ha Huy Giap, 12 District, Ho Chi Minh City. Hotline 0938-083-998/ (028) 7300-7588
|
VINTECOM INTERNATIONAL MANAGEMENT CONSULTANCY COMPANY
Head Office: No. 5 Hoang Sam treet, Nghia Do, Cau Giay district, Ha Noi City
VINTECOM HN OFFICE
Address: 16th Floor - Green Stars City
234 Pham Van Dong Street, Bac Tu Liem District, Ha Noi City
Tel: (024) 730.588.58/ (024) 730.333.86
Hotline: 094 886 5288
Skype: kd.vintecom
Email: office-hn@vintecom.com.vn
Web: www.vintecom.com.vn
VINTECOM HCM OFFICE
Address: Golden City House
182 Ha Huy Giap Street, District 12, Ho Chi Minh City
Contact: Ms. Pham Thu Ha
Tel: (028) 7300 7588
Hotline: 0938 083 998
Email: office-hcm@vintecom.com.vn
Web: www.vintecom.com.vn