This one-day introductory course provides essential guidance on how organisations can most effectively improve their information security. Based on best practice principles, this course provides an introduction for anyone intending to develop, implement and measure effective information security.

By attending this course, you will learn:

What is information security?
- IS Principles
- Confidentiality, integrity and availability
- Information assets
Security standards
- What is ISO 27001?
- Inside ISO 27001 and ISO 27002
- Overview of clauses 4 - 10
Assets and risks
- What are they and how are they linked?
- Asset identification
- What is a risk?
The risk assessment
- Risk mitigation and treatment
- Risk treatment plan
- Attributes
The audit
- Certification cycle
- Comments, observation and recommendations for improvement