Live online training via webinar
How to write four mandatory procedures for ISO 27001 and BS 25999-2
At first sight, Procedure for Document and Record Control, Procedure for Internal Audit, Procedure for Corrective Action, and Procedure for Preventive Action are not directly related to either information security or business continuity.
And yet, exactly these procedures are mandatory in both ISO 27001 and BS 25999-2 – without them, you cannot get certified. They are so important because they are considered to form the core of the management system for both standards.
By implementing those procedures in a proper way, not only will you have your documentation up-to-date and under control, but you will also ensure that your internal audit makes sense and runs smoothly, and that you always improve your system in a systematic way. In other words, these procedures hold the system together, and enable all the information security / business continuity activities and processes to run in a controlled system.
Register for this webinar to learn:
- ISO 27001 / BS 25999-2 requirements for each of the 4 procedures
- The purpose of these procedures
- How to structure each of the 4 documented procedures
- What will the certification body look for
- What are the roles in writing these procedures
"Dejan is clearly a subject matter expert on Risk Analysis and Risk Management. His trainings are well designed and superbly and professionally delivered using the GoToTraining platform."
Bob Chaput, CEO at Clearwater Compliance LLC
Presented by: Dejan Kosutic
|Dejan Kosutic is the author of documentation toolkits and E-learning tutorials at Information Security & Business Continuity Academy. He has extensive working experience both as a tutor and as a consultant – he is an Approved Tutor for ISMS Lead Auditor courses at SGS, and delivers various ISO 27001 and ISO 22301/BS 25999-2 in-person courses throughout Europe, as well as online courses via webinars. In his consulting career, he works with clients from the financial sector, government, and small and medium-sized businesses including IT companies.
He has an MBA from Henley Management College, and is the holder of the following certificates: Certified Management Consultant, ISO/IEC 27001 Lead Auditor, Associate Business Continuity Professional, and ISO 9001 Lead Auditor.
IS&BCA live online trainings: The knowledge you can apply right away.