Training Calendar

NSS will be organizing series of training on a quarterly basis, join our Mailing List to be in the loop of the upcoming training calendar. Or check us out regularly as we update the calendar. Send us an email at sales@mynetsec.com if you are interested in any of the trainings below.

Mark your calendar now!

COURSE

FEE’S (MYR)

DATE / MONTH

INDIVIDUAL

GROUP OF 3

FEB

MAR

APR

MAY

JUN

JUL

AUG

SEP

OCT

NOV

DEC

ISO 27001 Lead Implementer Training (3 Days)

RM3,400

RM3,060

BSI

17^th–19^th

2^nd–4^th

25^th–27^th

BSI

23^rd–25^th

13^th–15^th

BSI

18^th–20^th

7^th–9^th

BSI

20^th–22^nd

2^nd–4^th

BSI

15^th–17^th

ISO 27001 Lead Auditor Training (IRCA) Registered (5 Days)

RM5,800

RM5,220

2^nd – 6^th

BSI

16^th–20^th

BSI

13^th–17^th

BSI

18^th–22^nd

1^st–5^th

BSI

20^th–24^th

24^th–28^th

BSI

14^th–18^th

5^th–9^th

BSI

16^th–20^th

7^th–11^th

ISO 20000 ITSMS Lead Auditor Training (5 Days)

RM5,800

RM5,220

Certified Ethical Hacking Training, CEH (5 Days)

RM4,200

RM3,780

23^rd–27^th

4^th–8^th

6^th–10^th

12^th–16^th

CISSP CBK Review Seminar (5 Days)

RM4,400

6^th–10^th

3^rd–7^th

CISSP Examination (1 Day)
*

*USD549
(Early Bird)

USD599 (Standard)

21^st

16^th

12^th

5^th

SSCP CBK Review Seminar (3 Days)

RM2,508

13^th–15^th

10^th–12^th

SSCP Examination (1 Day) *

*USD419
(Early Bird) USD469 (Standard)

21^st

16^th

12^th

*To be entitled for the early bird promotion, registration and payment must be made 16 days before the exam.

For inquiries, please call us at +603 6203 5303 or email sales@mynetsec.com

Or register online at http://www.mynetsec.com/mailing-list

ISMS Concepts

Information Security Management System Concepts course teaches delegates the fundamentals of auditing/implementing information security management systems to ISO 27001:2005 (BS 7799-2:2002) standard. This 3-day intensive course provides insight on Implementation and Audit methodology for the ISO 27001:2005 certification for an organization. It forms the foundation for delegates to take the internationally recognized courses and certifications to become ISO 27001 Lead Auditors or Lead Implementers – the first step in the increasingly important Information Security Management profession.

What will you learn?

The component parts of the Standard
How to manage information security?
How the individual components of the process fit together?
How to treat implementation as a project?
Common pitfalls
How to define and risk assess “information assets”?
How to manage risks in a way suitable to your organization?
The essential requirements for obtaining auditor approval, i.e. certification

Course Outline

THE 27001 STANDARD

Why do you need certification to ISO 27001?
What the Information Security Management System (ISMS) is and what it is trying to achieve

CONFIDENTIALITY, INTEGRITY, AVAILABILITY AND AUDIT

Overview of the stages of the ISMS
Defining an Information Security Policy
Defining the scope of the ISMS

IDENTIFYING INFORMATION ASSETS

What are information assets?
Creating an asset classification system

UNDERTAKING A RISK ASSESSMENT

Identifying asset values, threats and vulnerabilities
Creating a usable and simple risk methodology
Using risk tools
Practical exercise – undertaking a risk assessment
Results and conclusions resulting from an assessment

MANAGING RISK

Risk measurement
Risk reduction and acceptance techniques
Practical exercise - determining control objectives
Selecting control objectives and controls
Security in depth
ISO 27001 control objectives and controls
The application of countermeasures
Practical exercise – creating a workable countermeasure
Additional controls not in ISO 27001
Preparing a Statement of Applicability
The need to review and audit the ISMS

AUDITING

What does auditing achieve?
How should auditing be conducted?
Different types of audit
The phase 1 and 2 ISO 27001 audits