Information Security Consulting
ISO 27001, SOC 2,
NIST 800-53 & more
Recent changes in the Information Security industry have highlighted the need for organizations to protect their most valuable asset – information. As a result more companies are seeking ISO 27001 certification to show that they are serious about protecting their information assets.
DESARA offers a range of hands-on workshops to help organizations understand the ISO/IEC 27001:2013 standard as well as the implementation guidance in its complementary standard ISO/IEC 27002:2013. Understanding the standard is the first step on a path to creating an Information Security Management System (ISMS) that will allow your organization to evaluate your organization’s information assets and implement a cost-effective security strategy that is compliant with ISO/IEC 27001:2103.
DESARA also supports internal audit requirements. We train internal audit teams, consult with leaders to make the most of internal audits, and perform outsourced or co-sourced internal audits. To meet the rigorous requirements for supplier security, DESARA can augment your supplier quality team to ensure security issues or covered, or we can audit your suppliers as your representative.
Getting Started With ISO 27001
DESARA’s ISO 27001/ISMS Implementation Workshop features a review of your organization’s current information security practices to help you benchmark them against the standard. Choose from 3 versions of the course to help meet your organization’s level of need.
2-Day
Basic understanding of what is required to be ISO 27001:2013 compliant
- Review Your Organization's Information Security Practices
- Teach ISO 27001 Requirements and Controls
- Create Statement of Accountability (SOA)
- Initiate Asset Identification and Risk Management Activities
5-Day
Understand specifically what your organization will need to do and create a project plan that you can execute in order to get to ISO 27001:2013 certification
Everything from the 2-day option and...
-
Define and Document ISMS Scope and Boundaries
-
Perform Basic Gap Assessment Against ISO 27001:2013 Requirements
-
Initiate ISMS Measurements, Corrective Action, and Incident Tracking Activities
-
Prepare ISMS Implementation Project Work Plan (recommendations for implementation path)
-
Conduct ISO 27001 Presentation for Senior Management on Project Plan, Necessary Resources, Timeline and Implementation
8-Day
Get a jumpstart on implementing your ISMS with hands-on workshops that will get you started on asset identification, incident tracking, corrective action, and more
Everything from the 2-day and 5-day option and...
-
Create Asset Database Architecture
-
Create Corrective Action Architecture
-
Create Incident Tracking Architecture
-
Perform Detailed Gap Assessment with IT Organization
-
Create Internal Audit Framework
-
Create Functional Control Matrix
-
Create a Communications Plan
-
Jumpstart Writing ISO 27001 Policy controls for your organization
2-Day
Total Classroom Workshop Hours: 16
Total Small Group Workshop Hours: 0
5-Day
Total Classroom Workshop Hours: 40
Total Small Group Workshop Hours: 0
8-Day
Total Classroom Workshop Hours: 40
Total Small Group Workshop Hours: 24
Who Should Attend?
ISO 27001:2013 requirements affect a wide range of functions in your organization; as a result it is in your best interest to have leaders from across the organization understand what is required for the secure handling of information assets:
- Senior and mid-level managers responsible for driving change in your organization
- Information Technology
- Engineering
- Finance
- Human Resources
- Legal/Contracts
- Product Management/Marketing
Interested in learning more?
Contact us to decide which program is best for your organization and get started on the path to using ISO 27001.
Subscribe to our Newsletter
Interested in hearing more from DESARA? Subscribe to our newsletter to get notified on upcoming webinars, events, training opportunities and more!
