ISO 27001: Information Security Management System Internal Audit
Tanggal
24 Nop 2021-25 Nop 2021
22 Des 2021-23 Des 2021
VENUE : Jakarta( Hotel Ibis Arcadia/Hotel Harris Tebet/Hotel Oak Tree/Setiabudi Building 2)
TRAINING DURATION : 2 days
LEARNING OBJECTIVE:
- Understanding the application of an information security management system in the ISO 27001:2005 context.
- Understanding the relationship between the information security management system, including the management of risks and controls, and the various stakeholders.
- Acquiring the expertise to support an organization in implementing, managing and maintaining an ISMS as a part of internal audit department
- Acquiring the personal skills and knowledge necessary to be an internal auditor
TRAINING MATERIAL OUTLINE:
Day 1: Introduction to the management of an ISMS based on ISO 27001
- Introduction to management systems: process approach & information security
- Introduction to ISO 27001 family standards
- ISO 27001 : 2005 – Requirements
- Annex A – Control objectives and controls
Day 2: Internal Auditing Techniques & Method
- Audit: Purpose, responsibilities and personal attributes
- Risk management : risk identification, risk analysis and risk treatment
- Audit activities: Initiation, preparation, implementing, finalization techniques
- Implementing a documentation management & report framework
- Exercises and case studies
INSTRUCTOR : Mokhammad Hadi Cahyono, ST.
INVESTMENT/PERSON :
- Rp. 4.500.000/person (full fare) or
- Rp. 4.250.000/person (early bird, payment 1 week before training) or
- Rp. 3.950.000/person (if there are 3 persons or more from the same company)
FACILITIES FOR PARTICIPANTS :
- Training Module
- Flashdisk contain training material
- Certificate
- NoteBook and Ballpoint
- T-Shirt
- Backpack
- Training Foto
- Training room with full ac facilities and multimedia
- Lunch and twice coffee break everyday of training
- Qualified Instructor
- Transportation from hotel of participants to hotel of training VV (if minimal participants from the same company is 4 )
TRAINING INSTRUCTOR
Mokhammad Hadi Cahyono, ST. lulusan dari Teknik Industri, Universitas Indonesia, UI. Di samping pendidikan formal, untuk meningkatkan kompetensinya Beliau juga mengikuti pendidikan nonformal diantaranya ISO 14001, 18001 Awareness Training, Information Security Management system (ISMS) Training, Demystifying ISO 27001:2005 Training, Quality Management system ISO 9000 comprehensive Training, Training for Powersim (Dynamic Simulation Software), Participant in Standardizations Seminar in order to Get Quality Improvement and Customer Satisfaction, Participant in Industrial Knowledge development Seminar, Participant in Introduction ISO 9000 and Documentation System Seminar, dll. Pak M. Hadi Cahyono sudah sering menjadi instruktur untuk kelas training industry di Indonesia serta menjadi pembicara pada seminar-seminar. Pengalaman kerja riil di lapangan Pak M. Hadi Cahyono banyak di seputar bidang ISO, seperti di antaranya Assessment kesiapan implementasi dan sertifikasi ISO 20000:2005, Penyusun prosedur keamanan informasi dalam rangka implementasi dan sertifikasi ISO 20000:2005, Pendampingan Sertifikasi ISO 27001:2005, Pembuatan Gap Analysis berbasis ISO 27001, Konsultansi Pendampingan Implementasi Dokumen/Kebijakan ISMS terkait Pemeliharaan Sertifikasi ISO 27001:2005, Pembuatan Sistem Manajemen Keamanan Informasi berbasis ISO27001 PPE, Preparation of ISO 27001:2005 certification dan masih banyak lainnya. Pengalaman riil lapangan ini akan menjadi kekayaan materi buat Beliau dalam menjadi instruktur di kelas-kelas training.