Image 1 of 1
Image 1 of 1
Image 1 of 1
Image 1 of 1
Information security management is integral to ESG governance, supply chain compliance, and regulatory obligation. This course covers the requirements of ISO 27001, including ISMS scope and context, information security risk assessment and treatment, statement of applicability, Annex A control selection and implementation, supplier security requirements, incident management, and ISMS audit and review. The internal auditor component covers planning and executing ISMS audits, evaluating the risk assessment process and control implementation, auditing supplier and third-party security obligations, identifying nonconformities, and reporting. Suitable for IT security, compliance, risk management, and data governance teams with internal audit responsibility.
Information security management is integral to ESG governance, supply chain compliance, and regulatory obligation. This course covers the requirements of ISO 27001, including ISMS scope and context, information security risk assessment and treatment, statement of applicability, Annex A control selection and implementation, supplier security requirements, incident management, and ISMS audit and review. The internal auditor component covers planning and executing ISMS audits, evaluating the risk assessment process and control implementation, auditing supplier and third-party security obligations, identifying nonconformities, and reporting. Suitable for IT security, compliance, risk management, and data governance teams with internal audit responsibility.