Training on Information Security Management Systems(ISMS) and IT Governance

About the Course
Course Outline
More Details

In today’s digital age, information security has become paramount for organizations to protect their sensitive data, maintain customer trust, and ensure business continuity. Information Security Management System (ISMS) and IT Governance play crucial roles in helping organizations establish robust frameworks and practices to mitigate risks and manage their IT infrastructure effectively.

With the increasing complexity of cyber threats and regulatory requirements, there is a growing demand for professionals who possess a deep understanding of Information Security Management System (ISMS) and IT Governance principles.

The course provides a solid foundation in ISMS principles based on international standards such as ISO/IEC 27001:2013 and offers insights into IT governance frameworks like COBIT. Participants will learn practical approaches to identify, assess, and mitigate information security risks, develop and implement policies and procedures, and establish processes for continuous improvement.

Target Participants

This course is ideal for IT professionals, information security managers, risk management professionals, compliance officers, auditors, and business managers seeking to deepen their understanding of ISMS and IT governance and enhance their professional capabilities in this critical domain.

What You Will Learn

By the end of this course the participants will be able to:

Obtain the necessary expertise to support an organization to implement an Information Security Management System that complies with ISO/IEC 27001
Understand the Information Security Management System implementation process
Provide continual prevention and assessments of threats within their organizations
Develop and implement effective IT governance frameworks
Understand the role of policies, procedures, and controls in information security management and IT governance
Establish processes for monitoring, measuring, and improving information security and IT governance practices
Prepare for compliance audits and certifications related to ISMS and IT Governance

Course Duration

Online 14 Days

Classroom-based 10 Days

Introduction to Information Security Management System (ISMS)

Overview of ISMS
Importance of information security
Key principles of ISMS
Introduction to ISO/IEC 27001:2013 standard
Understanding the risk management process
Identifying information assets and risks

Implementing ISMS

Establishing an ISMS framework
Risk assessment and treatment
Developing information security policies and procedures
Implementing controls according to ISO/IEC 27002
Documentation requirements

Business Continuity Planning (BCP) and Disaster Recovery (DR)

Importance of BCP and DR in ISMS
Developing business impact analysis (BIA)
Creating business continuity and disaster recovery plans
Testing and exercising BCP and DR plans
Maintaining and updating BCP and DR plans

IT Governance

Introduction to IT governance
COBIT framework overview
IT governance structures and processes
Aligning IT with business objectives
Roles and responsibilities in IT governance

IT Governance Frameworks

Overview of IT governance frameworks (COBIT, ITIL, etc.)
Implementing IT governance controls
IT strategy and planning
Performance measurement and metrics
IT governance case studies

Vendor Management and Third-Party Risk

Assessing third-party risks in ISMS
Vendor selection criteria and due diligence
Contractual obligations and service level agreements (SLAs)
Monitoring and managing third-party relationships
Addressing supply chain security risks

Compliance and Audit

Compliance requirements for ISMS and IT governance
Preparing for audits and certifications
Continuous improvement of ISMS and IT governance processes

Incident Response and Management

Understanding incident response lifecycle
Establishing incident response procedures
Incident detection, analysis, containment, eradication, and recovery
Creating incident response teams and roles
Conducting post-incident reviews and improvement actions

Monitoring and Assurance

Metrics and dashboards
Key performance indicators (KPIs)
3 lines model
Oversight and assurance functions
Assurance on process outcome
Assurance on process execution

Security Awareness and Training

Importance of security awareness
Developing security awareness programs
Conducting security training for employees
Promoting a security-conscious culture
Measuring the effectiveness of security awareness initiatives

Training Approach

This course is delivered by our seasoned trainers who have vast experience as expert professionals in their respective fields of practice. The course is taught through a mix of practical activities, presentations, group work, and case studies. Training notes and additional reference materials are provided to the participants.

Certification

Upon successful completion of this course, participants will be issued with a certificate of course completion.

Tailor-Made Course

We can also do this as a tailor-made course to meet organization-wide needs.

Venue	Kenyan Cost (KES) (Excl. 16% VAT)	Non-Kenyan Cost (USD) (Excl. 16% VAT)	Enroll
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register
Nairobi	170,000	2,300	Register

Course Duration	Kenyan Cost (KES) (Excl. 16% VAT)	Non-Kenyan Cost (USD) (Excl. 16% VAT)	Enroll
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register
14 days	130,000	1,400	Register

Training on Information Security Management Systems(ISMS) and IT Governance

Target Participants

What You Will Learn

By the end of this course the participants will be able to:

Course Duration

Introduction to Information Security Management System (ISMS)

Implementing ISMS

Business Continuity Planning (BCP) and Disaster Recovery (DR)

IT Governance

IT Governance Frameworks

Vendor Management and Third-Party Risk

Compliance and Audit

Incident Response and Management

Monitoring and Assurance

Security Awareness and Training

Training Approach

Certification

Tailor-Made Course

Training on Cyber-Security Investigations and Electronic Evidence Management

Training on Cyber Security

Training on Information Security Management Systems(ISMS) and IT Governance

Training on Information Security Management System and IT Governance

Training on Vulnerability Assessment and Penetration Testing

Training on IT Systems Audit

Training on Data Privacy and Protection

Training on Advanced Servers for ODK

Training on Advanced Mobile Data Collection using ODK-X (ODK2)

Training on Mobile Data Collection and Data Management Using SurveyCTO

Training on Mobile Data Collection using ODK

Training on Mobile Data Collection using KoBoToolBox

Training on Mobile Data Collection and Data Management using CommCare

Training on mobile data collection using EpiCollect

Subscribe to our News Letter!

Course Categories

Our Services

Devimpact Institute | All Rights Reserved | Powered by Devimpact Digital Team©

Modal title