ISO 27001: Information Security Management System
COMPLETE IMPLEMENTATION
TRAINING TIME :
- 21 Nov 2016-25 Nov 2016
- 05 Dec 2016-09 Dec 2016
VENUE : Jakarta (Maxone Hotel Menteng, Balairung Hotel Matraman, Sentral Hotel, Haris Tebet, Gd Muamalat Institute, Ibis Manggadua, Little Amaroossa Residence, Cosmo Amaroossa, Zodiak MT. Haryono, Grand Tjokro)
TRAINING DURATION : 5 days
LEARNING OBJECTIVE:
- Understanding the application of an information security management system in the ISO 2701:2005 context.
- Understanding the relationship between the information security management system, including the management of risks and controls, and the various stakeholders.
- Acquiring the expertise to support an organization in implementing, managing and maintaining an ISMS as specified ISO 27001
- Acquiring the personal skills and knowledge necessary to advise an organization on the best practices in information security management
TRAINING MATERIAL OUTLINE:
- Day 1 : Introduction to the management of an Information Security Management System based on ISO 27001 and launching of an ISMS
- Introduction to management systems and the process approach & information security
- Introduction to ISO 27001 family standards
- Implementation of the governance framework: information security roles and responsibilities, ISMS policies, etc.
- Day 2 : Planning an ISMS based on ISO 27001
- Risk management : risk identification, risk analysis and risk treatment
- Drafting the statement of applicability
- Implementing a documentation management framework
- Designing performance indicators of control measures (metrics and operating reports).
- Day 3 : Launching and implementing an ISMS based on ISO 27002
- Implementing security controls in organization
- Day 4: Launching and implementing an ISMS based on ISO 27002
- Implementing security controls in organization (continue)
- Day 5: ISO 27001 certification audit
- Implementing security controls in organization (continue)
- Continuous improvement
- Preparation ISMS internal audit and ISO 27001 certification audit
- Simulation and Case Study
INSTRUCTOR : Mokhammad Hadi Cahyono, ST.
INVESTATION PRICE/PERSON :
- Rp 8.950.000/person (full fare) or
- Rp 8.750.000/person (early bird, payment 1 week before training) or
- Rp 8.500.000/person (if there are 3 or more participants from the same company)
FACILITIES FOR PARTICIPANTS :
1. Training Module
2. Flashdisk contain training material
3. Certificate
4. NoteBook and Ballpoint
5. T-Shirt
6. Backpack
7. Training Foto
8. Training room with full ac facilities and multimedia
9. Lunch and twice coffee break everyday of training
10. Qualified Instructor
11. Transportation from hotel of participants to hotel of training VV (if minimal participants from the same company is 4 )
TRAINING INSTRUCTOR
Mokhammad Hadi Cahyono, ST. lulusan dari Teknik Industri, Universitas Indonesia, UI. Di samping pendidikan formal, untuk meningkatkan kompetensinya Beliau juga mengikuti pendidikan nonformal diantaranya ISO 14001, 18001 Awareness Training, Information Security Management system (ISMS) Training, Demystifying ISO 27001:2005 Training, Quality Management system ISO 9000 comprehensive Training, Training for Powersim (Dynamic Simulation Software), Participant in Standardizations Seminar in order to Get Quality Improvement and Customer Satisfaction, Participant in Industrial Knowledge development Seminar, Participant in Introduction ISO 9000 and Documentation System Seminar, dll. Pak M. Hadi Cahyono sudah sering menjadi instruktur untuk kelas training industry di Indonesia serta menjadi pembicara pada seminar-seminar. Pengalaman kerja riil di lapangan Pak M. Hadi Cahyono banyak di seputar bidang ISO, seperti di antaranya Assessment kesiapan implementasi dan sertifikasi ISO 20000:2005, Penyusun prosedur keamanan informasi dalam rangka implementasi dan sertifikasi ISO 20000:2005, Pendampingan Sertifikasi ISO 27001:2005, Pembuatan Gap Analysis berbasis ISO 27001, Konsultansi Pendampingan Implementasi Dokumen/Kebijakan ISMS terkait Pemeliharaan Sertifikasi ISO 27001:2005, Pembuatan Sistem Manajemen Keamanan Informasi berbasis ISO27001 PPE, Preparation of ISO 27001:2005 certification dan masih banyak lainnya. Pengalaman riil lapangan ini akan menjadi kekayaan materi buat Beliau dalam menjadi instruktur di kelas-kelas training.
