Course Objectives
By the end of this training, participants will be able to:
- Understand the key principles and requirements of ISO/IEC 27001:2022, ISO/IEC 20000-1:2018, and ISO/IEC 22301:2019.
- Implement compliance strategies and controls based on these ISO standards.
- Integrate these standards into their organization’s IT processes.
- Conduct audits and monitor compliance effectively.
- Foster a culture of compliance within their organization.
Prerequisites
Basic understanding of IT systems and security principles
Who Should Attend
- IT Managers
- Compliance Officers
- Risk Managers
- Security Professionals
- Internal Auditors
Outline Course
Day 1: Introduction to ISO/IEC 27001:2022
Overview of ISO/IEC 27001:2022
- Introduction to Information Security Management
- Key principles and benefits of ISO/IEC 27001:2022
- Structure and requirements of the standard
Implementing ISO/IEC 27001:2022
- Developing an ISMS (Information Security Management System)
- Risk assessment and treatment
- Security controls and objectives
Day 2: Understanding ISO/IEC 20000-1:2018
Overview of ISO/IEC 20000-1:2018
- Introduction to IT Service Management
- Key principles and benefits of ISO/IEC 20000-1:2018
- Structure and requirements of the standard
Implementing ISO/IEC 20000-1:2018
- Developing an ITSM (IT Service Management) framework
- Service design, transition, and operation
- Continual service improvement
Day 3: Exploring ISO/IEC 22301:2019
Overview of ISO/IEC 22301:2019
- Introduction to Business Continuity Management
- Key principles and benefits of ISO/IEC 22301:2019
- Structure and requirements of the standard
Implementing ISO/IEC 22301:2019
- Developing a BCMS (Business Continuity Management System)
- Business impact analysis and risk assessment
- Business continuity strategies and plans
Certification
Participants will receive a certificate of completion at the end of the training.