C106: DEMO OF THE INFORMATION SECURITY … · c. ISO 27001-2013 Audit checklist report (clause wise) 6. Sample copy of certified ISO/IEC 27001:2013auditor training certificate:- The

C106: DEMO OF THE INFORMATION SECURITY MANAGEMENT SYSTEM - ISO 27001:2013 AWARENESS AND AUDITOR

TRAINING PPT PRESENTATION KIT Price 360 USD

Buy: http://www.globalmanagergroup.com/isms-27001-auditor-

training-ppt.htm

www.globalmanagergroup.com E mail [email protected] Tele: +91-79-2656 5405 Page 1 of 8

A. The entire PPT presentation kit has 6 main directories as below.

ISO 27001:2013 Awareness and auditor Training Presentation kit with auditor certificate

Sr. No.

List of Directory Document of Details

1.

PPT Presentation No. of Slides

1. Overview of Information Security Management system 32

2. ISO 27001-2013 requirements 42

3. Information security related Definitions 05

4. ISMS Documented information and 4 tier document structure

15

5. ISO 27001 ISMS Internal auditing process 60

6. Steps for ISO 27001 certification 12

7. Risk assessment 28

8. ISMS controls and control objectives 33

9. Information Security management 52

10. Information security controls as per BS 7799-2 with pictures 84

Case Study 06

Work shop 03

Total no. of slides 372

2. A trainer's guide and hand outs and editable form to understand ISMS subject well

Approx. 70 Pages in Ms. word

3. Work-shops and case studies to evaluate effectiveness of training.

05 workshops and 02 case studies

4. ISO/IEC 27001:2013, BS 7799-2 controls and Annexure A control related ISMS audit checklist and questions

More than 500 questions

5. Sample copy of ISO/IEC 27001:2013 audit forms and templates to maintain ISO/IEC 27001:2013 audit records.

03 forms in Ms. Word

6. Sample copy of certified ISO/IEC 27001:2013auditor training certificate

01 file in Ms. Word

C106- CONTENTS OF ISO 27001:2013 PPT PRESENTATIONS TRAINING KIT

http://www.globalmanagergroup.com/isms-27001-auditor-training-ppt.htm


http://www.globalmanagergroup.com/

mailto:[email protected]




training-ppt.htm


Part: 1 Topic wise number of slides:-

Sr. No. Title of Slides No of Slide

1. Overview of Information Security Management system 32

2. ISO 27001-2013 requirements 42

3. Information security related Definitions 05

4. ISMS Documented information and 4 tier document structure 15

5. ISO 27001 ISMS Internal auditing process 60

6. Steps for ISO 27001 certification 12

7. Risk assessment 28

8. ISMS controls and control objectives as per Annexure A of ISo 27001

33

9. Information Security management 52

10. Information security controls as per BS 7799-2 with pictures 84

Case Study 06

Work shop 03

Total No. of Slides 372

To get more information about ISO 27001 :2013 Training kit Click Here

1. Presentation: -

Under this directory further files are made in power point presentation as per the chapter listed below.

Topic wise Power Point presentation in 10 modules as listed below.

1. Overview of Information Security Management system

It covers Overview of ISMS system, benefits and summary of overall system

2. ISO 27001-2013 requirements

It covers Information Security systems specifications, Requirements, Establishment, Implement and operate the ISMS, Monitor and review the ISMS, Maintain and improve the ISMS,

3. ISO Information security related Definitions

It covers Information Security systems related definitions





http://www.globalmanagergroup.com/iso-27001-auditor-training-presentation-kit.htm




training-ppt.htm


4. ISMS Documented information and 4 tier document structure

It covers Information Security Management System documented information and 4 tier document structure.

5. ISO 27001 ISMS Internal auditing process

It covers how to do the Internal Audit as per standard of ISO 27001 2013. it cover Audit Planning, Steps of Audit etc. The details ISMS process is given

6. Steps for ISO 27001 certification

It covers Implementation Methodology, Steps for Installation, The top 10 non-conformances, Audit Process, What happens during a certification audit

7. Risk assessment

It covers the Risk assessment of ISMS ISO 27001 what is Risk assessment, Objective of Risk assessment.

8. ISMS controls and control objectives as per ISO 27002 ( Annexure A)

It covers the Information Security Management Systems controls and control objectives as per ISO 27002 (Annexure A).The description is helpful for users to understand it

9. Information Security management

It covers the all information about Information Security Management in more than 50 PPT slides with all critical aspects of ISMS like risk assessment, treatment etc.

10. Information security controls as per BS 7799-2 with pictures

It covers the overview, information security policy, Internal organisation tasks of ISM Forum, Asset management and asset inventory, personnel security, security areas, operational processes, access administration and control, system development and maintenance application security, Business continuity management, compliance issues and establishing the ISMS. Also many places pictorial presentation is given for better understanding to users

This part comprises more than 360 ppt presentations, each pleasingly presented presentation designed to get the message over, and establish a much better understanding. It also describes how to tackle it and drills down into all these topics. No voice is put in the presentation and user can edit it to suit his requirements in local languages.








training-ppt.htm


2. A trainer's guide and hand outs and editable form to understand ISMS subject well:-

This topic covers write up for the ready reference to the participant for understanding and reading the subject to get in depth knowledge on the subject

It is given in word. You may also use it for further reading and circulations within audience

Chapter No. SECTION

1. Overview of Security Management Standard (ISO 27001:2013)

2. ISO 27001 requirements

3. Assets Lists

4. ISO 27001:2013 certification methodology

5. Approach Paper for ISMS Implementation

6. Risk assessment and risk management

7. Information Security management System Audit

8. Information Security Management system Audit reports

9. Work shops

Work Shop- 1

Work Shop- 2 (a),(b),(c)

Work Shop- 3

Work Shop- 4

Work Shop- 5

Case Study – 1

10. Case Study – 2

3. Work-shops and case studies to evaluate effectiveness of training9 ^ workshops & 2 case study):-

This topic covers workshops and case studies to evaluate effectiveness of training. Each participant needs to solve this work shop and case study after undergoing the training. After successful completion of work shop and case study the ISO 27001 internal auditor training certificate is given.

Total workshop 6 Case study 2








training-ppt.htm


4. ISMS ready to use audit checklist and questions (More than 600 audit questions):-

This topic covers ISO/IEC 27001:2013, BS 7700-2 controls and annexure A control related audit checklist and questions. It also includes questions for good system implementation and ready tool kit for the ISMS auditor to be effective auditor

a. ISO 27001 -2013 requirement wise audit checklist

b. ISO 27001 controls audit checklist

c. BS 7799 –Good practices audit checklist

5. Sample copy of ISO/IEC 27001:2013 audit forms and templates to maintain ISO/IEC 27001:2013 audit records ( 3 forms):-

This topic covers ISO/IEC 27001:2013 audit forms and templates to maintain ISO/IEC 27001:2013 audit records.

a. Audit plan/Programme

b. Internal ISMS audit non conformity report

c. ISO 27001-2013 Audit checklist report (clause wise)

6. Sample copy of certified ISO/IEC 27001:2013auditor training certificate:-

The sample copy of certified internal auditor is given in word edit form. So after successful completion of workshops and case study the training certificate can be given to the trained internal auditor for ISO 27001-2013 auditor training certificate.








training-ppt.htm


Global manager group is a progressive company and promoted by a group of qualified engineers and management graduates having rich experience of 20 years in ISO consultancy and management areas. The company serves the global customers through on-site and off-site modes of service delivery systems. We offer a full range of consulting services geared towards helping all types of organizations to achieve competitiveness, certifications and compliance to international standards and regulations. So far we had more than 1200 clients in more than 45 countries. Our readymade training and editable document kit helps the client in making their documents easy and make them complying to related standard faster with the establishment of best processes. It helps the organization to make the best system with process improvement concepts and helps the organization to get best performances in terms of reduction in costing, efforts and get the things done timely with Quality product. Thus it helps the organization to give full value for money and pay back of our product is less than 2 month.

1. Our promoters and engineers have experience of more than 1200 companies globally for management training, ISO consultancy, process improvement concept implementation and ISO series consultancy. We had clients in more than 45 countries.

2. Highly qualified 40 team members (M.B.A., Degree engineers) and owner is having rich professional experience (since 1991).

3. We have 100% success rate for global standards certification including ISO of our clients from reputed certifying body and branded image and leading name in the market.

4. Suggest continual improvement and cost reduction measures as well as highly informative training presentations and other products gives payback within 2 months against our cost.

5. So far more than 50000 employees are trained by us in ISO series certification in last 20 years.

6. We had spent more than 60000 man-days (170 man years) in preparing ISO documents and training slides.

7. Our product gives lot of opportunity for process improvements and gives full benefits to the users.

Global Manager Group is committed for:

1. Personal involvement & commitment from first day 2. Optimum charges 3. Professional approach 4. Hard work and update the knowledge of team members 5. Strengthening clients by system establishment and providing best training materials in any

areas of management to make their house in proper manner 6. To establish strong internal control with the help of system and use of the latest

management techniques

Chapter-2.0 ABOUT COMPANY








training-ppt.htm


3.1 Hardware and Software Requirements

A. Hardware:-

Our document kit can be better performed with the help of P3 and above computers with a minimum 10 GB hard disk space.

For better visual impact of the power point Document you may keep the setting of colour image at high colour.

B. Software used in Document kit

Hand-outs written in word 2003 and 2007 and window XP and Presentation made in Power point programs you are therefore required to have office 2003 and office 2007.

3.2 Features of Document kit:-

It will save much time in typing and preparation of presentation alone.

Written in Plain English

Easily customized by you to add audio clips in the local language etc to prepare presentation for any other groups and user can easily customize it for own use.

Good guide for training of all the group members for ISO 27001:2013 awareness and auditor training.

User-friendly and easy to learn.

Developed under the guidance of experienced experts.

Chapter-3.0 USER FUNCTION








training-ppt.htm


Implementation of proper Information Security Management System as per requirement of ISO 27001:2013 standard improves organization to design and formulate its specific set of security requirements and desired objective. Organizations can use this standard to provide relevant information about information security policies, directives, standards and procedures to its trading partners as well as any other organization that they interact with for operational or commercial purposes. ISO 27001:2013 guidelines provide a comprehensive model for information security management systems that can make any company competitive. Among the wide advantages of the ISO 27001:2013 standard some of as follows:

Lower Expenses – through avoided risks

Increase information security level within the organization

Enhance the knowledge and importance of security-related issues at all level and

improve information security controls

Improved visibility into your information security program & better security

awareness

Enhancement of client and partner confidence & perception of your organization

Better alignment within your organization

Assists in the development of best information security practice

Chapter-4.0 WHAT THE BENEFITS ARE TO IMPLEMENTS ISMS AS

PER ISO 27001:2013?





Click to edit Master title style

• Click to edit Master text styles

– Second level

• Third level– Fourth level

» Fifth level

Copy # 81 copyright @ Global Manager Group; E-mail: [email protected]


____ __ ____ _____ ____ ______

_____ _________ _____

_____ _________ _____

Click to edit Master text stylesSecond levelThird level

Fourth levelFifth level

1

Punyam Management Services Pvt. Ltd.

Punyam


• Click to edit Master text styles• Second level• Third level• Fourth level• Fifth level

Copyrights 2013 @ I Global Manager Group | [email protected] | 1GMG



– Second level


» Fifth level



____ __ ____ _____ ____ ______

_____ _________ _____

_____ _________ _____



2


Punyam




IS - Managementsystem

Control

IS-P

olic

y

Sco

pe

Ris

k A

nal

ysisImplementMeasures

Effectiveness

Sele

ctio

n o

fM

eas

ure

s

Potential

Effects



– Second level


» Fifth level



____ __ ____ _____ ____ ______

_____ _________ _____

_____ _________ _____



3


Punyam




4 Context of the

Organization

6 Planning• Actions, risks

and opportunity• IS Objectives &

Planning

7 Support• Resources• Competence• Awareness• Communication• Documented

information

10 Improvement

5 leadership•Leadership and commitment•Policy•Roles, responsibility & authority

9 Performance •Monitoring Measurement, analysis and evaluation•Internal audit•Management review

8 Operation• Operation Planning

& control• IS risk assessment• IS risk treatment

Requirements of Standards as per ISO/IEC 27001-2013



– Second level


» Fifth level



____ __ ____ _____ ____ ______

_____ _________ _____

_____ _________ _____



4


Punyam




Establish an information security policy :

• Appropriate to the purpose of the organization

• Includes information security objectives

• Provide the framework for setting information securityobjectives

• Includes a commitment to satisfy applicable requirements

• Includes a commitment to continual improvement for ISMS

• Communicate within the organization

• Provide to interested parties, as appropriate

The information security policy is documented and kept in ISMSmanual

5.2 Policy



– Second level


» Fifth level



____ __ ____ _____ ____ ______

_____ _________ _____

_____ _________ _____



5


Punyam




● Approve the ISMS Policy

● Ensure that security goals and Objectives are included in planning.

● Setup IS related positions and assign roles,responsibilities and authorities

● Conduct IS Marketing within the organisation

● Ensure that enough resources are present to operateand enhance the ISMS

● Define levels of risk acceptance

● Trigger / Execute ISMS reviews

Management Obligations



– Second level


» Fifth level



____ __ ____ _____ ____ ______

_____ _________ _____

_____ _________ _____



6


Punyam




1.0 PURPOSE :

Give Statement of the Specific Purpose of the Procedure to Know Why This Procedure Is BeingFollowed.

2.0 SCOPE :

Mention the Department and the Area of Personnel Where the Procedure Applies.

3.0 RESPONSIBILITY :

Write Down Responsibility for Different Level of Persons for Different Activities Mention in ThisProcedure.

4.0 DESCRIPTION OF ACTIVITIES :

This Section Should Contain Details of the Activities Step by Step With Sub Title of Paragraphs andthe Action to Be Taken. They Contain How the Actions Will Be Taken.

5.0 REFERENCE :

Give Reference of Internal and External Documents Used in Procedure

6.0 ENCLOSURES :

List Out Any Tables or Flowcharts Enclosed With the Procedure As a Part of Procedure.

7.0 FORMATS / EXHIBITS :

List Out Them in Proper Manner.

NAME OF THE COMPANY

ISMS PROCEDURE

Department Procedure No. : PRO/OO/XY

Issue No. : 1.0

Date : DD-MM-YY

Originator Approved By Signature Page

Of



– Second level


» Fifth level



____ __ ____ _____ ____ ______

_____ _________ _____

_____ _________ _____



7


Punyam




level1

level2

level3

level4

level5

level6

Kla

ss

e1

Kla

ss

e2

Kla

ss

e3

Kla

ss

e4

Kla

ss

e5

Recycling or Reuse

UPSSecure Cabling

MobileDevices

Maintenance Contracts

Device Protection



– Second level


» Fifth level



____ __ ____ _____ ____ ______

_____ _________ _____

_____ _________ _____



8


Punyam




Corporation Specific Definition of Media

Secure storage and transport, according to classification of data

contained

Formal procedure for media disposal

Coordination of Activity (internal, external partners)

Erase Media at Disposal

Labeling of media

Storage of media according to manufacturer‘s

specifications

Media Security



– Second level


» Fifth level



____ __ ____ _____ ____ ______

_____ _________ _____

_____ _________ _____



9


Punyam




Firewalls

User account administration

Intrusion detection and intrusion prevention

Antivirus

Public key infrastructure (PKI)

Secure Sockets Layer (SSL)

Single sign-on (SSO)

Biometrics

Encryption

Privacy compliance

Remote access

Digital signature

Electronic data interchange (EDI) and electronic funds transfer (EFT)

Virtual private networks (VPNs)

Forensics

Monitoring technologies

Information Security Technologies



– Second level


» Fifth level



____ __ ____ _____ ____ ______

_____ _________ _____

_____ _________ _____



10


Punyam




► Conduct ISO:27001 awareness program (top + middle + bottom level).

► Form a steering committee and task force for documentation

► Identification of All Possible INFORMATION SECURITY risks to the company.

► Establish risk assessment study and make risk treatment plan

► Define Information Security Policy, Objectives and Targets.

► Prepare documents of INFORMATION SECURITY management system, Records, Legal Requirements.

► Train all for Information Security Management system for achieving Objectives & Targets.

► Communication to all including Suppliers and Interested parties.

► Implementation & train all personnel in the use of procedures & formats.

► Preparation and Implementation of system to establish system for ISMS controls.

► Train internal auditors.

► Assess the system through first internal audit.

► Take corrective actions for non-conformities.

► Apply for certification.

► Assess the system through second round of internal audit.

► Avail onsite document adequacy audit of certifying body.

► Take actions on suggestions given by them

► Final audit by certifying body.

STEPS FOR INSTALLATION OF ISO:27001-2013 INFORMATION SECURITYAL MANAGEMENT SYSTEM


TRAINING PRESENTATION KIT Price 360 USD


training-ppt.htm


By using these slides, you can save a lot of your precious time while preparing the ISO 27001:2013 awareness training course materials for in-house training programs.

To provide you with the Presentation Materials and hand-outs that you need for an effective presentation on ISO 27001:2013 awareness training, what it is, and what it requires

Present the basics of ISO 27001:2013 awareness training to Management or other groups

To deliver ISO 27001:2013 awareness training in a group, using a PowerPoint presentation

Take care for all the section and sub sections of ISO 27001:2013 awareness training and give better understanding at all the levels during ISO 27001:2013 awareness training implementation and sharpen the awareness of ISO 27001:2013 awareness training requirements for all employees within organization.

For purchase Click Here BUY

Visit our web site for more ISO Auditor Training kits:

http://www.globalmanagergroup.com/E-Shop.aspx

Chapter-5.0 BENEFITS OF USING OUR PRESENTATION KIT





http://www.globalmanagergroup.com/Cart.aspx?prodid=RJSorWBWkq8=

http://www.globalmanagergroup.com/E-Shop.aspx