General Overview

After ISO/IEC 27001, ISO/IEC 27002 is the second most significant standard for promoting an ISMS in an organization.

The 27002 controls demonstrate the scope and structure of the future control set of the 27001 standard (currently referred to as Annex A). The implementation recommendations are an excellent starting point for those wishing to implement an ISMS in accordance with 27001. They are also used as a "guide" by auditors in a certification audit to determine whether the controls implemented in the company are adequate. The control set of the upcoming ISO/IEC 27001 standard can be assumed to be similar to the structure of the 27002 controls.

This I-RAB Certified course has affects on the content and structure of ISO/IEC 27019 for energy suppliers, ISO 27799 for hospitals, ISO 27017 for cloud services, ISO 27018 for the protection of personally identifiable information (PII), and standards based on it. ISO 27701, etc. for the management of privacy information.

Certification

Participants must demonstrate achievement of the learning and enabling objectives using the methods defined by I-RAB for continuous assessment and evaluation.

Who should attend?

• Information security officers
• Information security risk managers and analysts
• Information security auditors and consultants

Prerequisites

There is no prerequisite for this course.