top of page

PCI DSS Professional

PCI DSS Professional

ABOUT THIS COURSE

The ongoing evolution of information security threats necessitates heightened vigilance from organizations. With the importance of safeguarding valuable data increasingly in the spotlight, the most effective defense lies in the meticulous implementation and management of security controls and best practices. Information security is not only a globally recognized standard but also an expectation and requirement from customers, legislators, and other stakeholders.

This training course is specifically designed to equip you with the skills needed to implement an Information Security Management System (ISMS) in line with ISO/IEC 27001 standards. It aims to impart a thorough understanding of ISMS best practices and the framework for its ongoing management and enhancement.

The course material is enriched with practical exercises and case studies, offering you hands-on expertise applicable to your everyday tasks and responsibilities. Our comprehensive training courses cover all the essentials, ensuring you have everything you need to obtain your certification.

COURSE BENEFITS

1. Understand the relationship between ISO/IEC 27001, ISO/IEC 27002, and other relevant standards and regulatory frameworks.
2. Gain proficiency in the principles, approaches, methods, and techniques essential for implementing and managing an effective Information Security Management System (ISMS).
3. Develop skills to interpret the requirements of ISO/IEC 27001 within the unique context of an organization.
4. Acquire knowledge on assisting organizations in planning, implementing, managing, monitoring, and maintaining a robust ISMS.
5. Obtain expertise to guide organizations in adopting best practices for Information Security Management Systems.

WHO SHOULD ATTEND?

o Managers or consultants involved in Information Security Management
o Expert advisors seeking to master the implementation of an Information Security Management System
o Individuals responsible for maintaining conformance with ISMS requirements
o ISMS team members

COURSE CONTENTS

Day 1: Introduction to ISO/IEC 27001 and initiation of an ISMS
  • Training course objectives and structure

  • Standards and regulatory frameworks

  • Information Security Management System (ISMS)

  • Fundamental information security concepts and principles

  • Initiation of the ISMS implementation

  • Understanding the organization and its context h ISMS scope


Day 2: Planning the implementation of an ISMS
  • Leadership and project approval

  • Organizational structure

  • Analysis of the existing system

  • Information security policy

  • Risk management

  • Statement of Applicability


Day 3: Implementation of an ISMS
  • Documented information management

  • Selection and design of controls

  • Implementation of controls

  • Trends and technologies

  • Communication

  • Competence and awareness

  • Security operations management


Day 4: ISMS monitoring, continual improvement, and preparation for the certification audit
  • Monitoring, measurement, analysis, and evaluation

  • Internal audit

  • Management review

  • Treatment of nonconformities

  • Continual improvement

  • Preparing for the certification audit

  • Certification process and closing of the training course


Day 5: Certification Exam

OVERVIEW IN TRAINING SCHEDULE

INSTRUCTOR

Nipon Nachin, Ph.D.

DAY

3

Q / YEAR

Q4/2024

START DATE

24-ธ.ค.-24

END DATE

26-ธ.ค.-24

PRICE :

35,000.00

bottom of page