Introduction

ISO/IEC 27001 is an international specific requirements for establishing, implementing,maintaining and continually improving an information security management system (ISMS). This standard is applicable to all organizations, regardless of size or complexities that manufacture food packaging and/or intermediate products. The standard is applied to demonstrate the ability to consistently manage information security that meet regulatory requirements. This course helps aspiring participants to understand how ISO/IEC 27001 helps to continually improve organisational information security system using its best practice. Participants learn the details of each clauses of the standard requirement to be able to apply within their organization.

Objective

To describe the concept overview of the ISO/IEC 27001 requirement.

To provide knowledge on information security system (QMS) and describe how Risk-Based Thinking is applied in ISO/IEC 27001.

To explain the importance of customer-specific requirements in the information security system.

To build awareness in quality and encourage continual improvement within organization.

Content

Session 1:  Introduction

Describe information security approach and how to use process mapping to understand a process. Identify which elements impact process performance and determine measures that can be used to monitor and improve the performance of the process.

Session 2:  Terms and Definitions

Describe relevant terms and definitions that normally use in the quality system.

Session 3:  Risk-based thinking and tools of Related Standards

Describe quality concept is implemented in conjunction with information security system. Explain risk-based thinking fosters a proactive culture of prevention and improvement

Session 4:  Interpretation of standard requirement

Describe the ISO/IEC 27001 requirement clause by clause that implemented in conjunction with information security system. Explain concept and awareness to improve effectiveness of the quality system.

Session 5:  Conclusion

Conclude requirement and explain step to implement the system.

*Exercise workshop will also be delivered in each key sessions*

Prerequisites

Basic knowledge in quality is optional. Experience in any industry will be more benefit.

Who should attend

This course is suitable for anyone in the industry who either already take a role concerns to quality or expect to do so as;

Managerial staff

Supervisor/Leader

Engineer

Officer

Anyone who interested

Benefit

Upon successful completion of this training, participants will have knowledge of ISO/IEC 27001 standard requirement. Participants will know the process approach that can help organization streamline processess, which will lead to increased efficiency and productivity.