Information_Security_Management_system_training_ENGIE_Laborelec_Academy

Implementing an ISMS for Operators of Essential Services (OES): Improving the information security posture

1,730.00 excl. VAT

Planned Course Data


Need more information?
Category:

Duration

3 days (8h/day); 9AM-5PM CET

Frameworks

Goals

The high amount of information and the low-security level within critical processes, put at risk the productivity of the organizations and the security of the processed information managed by Operators of Essential Services (electricity, oil and gas, distribution system operators, industrial system operators, entities from the air and railway transportation sector, health care, drinking water suppliers). Measures to improve your security level are needed to combat threats. Organizational and technical measures need to be employed to establish a good level of security. For systems to remain secure, however, security posture must be evaluated and improved continuously. Establishing such process that will support these ongoing improvements is essential in order to maintain your security level. Experience has shown that implementing Information Security Management System (ISMS) according to internationally recognizable information security standard ISO 27001 is a very good approach to accomplish that mission. Companies obtaining the ISO/IEC 27001 certification have indirect proof that they meet the mandatory regulatory requirements imposed by the legal system under which they perform their activities. The increasing trend is for them to decide to implement an Information Security Management System (ISMS) due to industry-specific requirements or in order to build the trust of their customers.

Program

With rich experience in the Energy and Industrial sector, we are offering our knowledge and expertise during this 3-day in-depth training, covering all clauses and controls in the ISO 27001 standard. We will be discussing:

  • Securing executive support and set the objectives
  • Defining the scope of the system
  • Evaluating assets and analyzing the risk
  • Defining the Information Security Management System
  • Competencies of the ISMS Roles
  • Best practices in the development and the implementation phases
  • Maintaining the ISMS, monitoring and continuously improvement process
  • ….. and a lot more

Target Audience

Professionals who are:

  • Working to implement or maintain an ISMS within an organization
  • Required to audit an ISMS and are required to have a basic understanding of the standard
  • Working within an organization with an ISMS, whether the organization is already certified or is considering certification to ISO/IEC 27001.

Targeted at quality managers, other executives, managers and supervisors, business process owners, program and project managers, assessors, consultants.

Practical Info

Please note that the course will only take place if the minimum number of participants is acquired.

If you would like a dedicated session for your team, or if you want information on the possible dates for this course, please get in contact at laborelecacademy@engie.com

Check out our other courses

  • Cyber Security Risk Assessment & Management For Operators Of Essential Services (OES)
    Add to cart

    Cyber Security Risk Assessment & Management for Operators of Essential Services (OES)

    1,545.00 excl. VAT
  • Applied Cybersecurity Training For OT Or IT Personnel
    Add to cart

    Applied cybersecurity training for OT or IT personnel

    4,610.00 excl. VAT
Back To Top
1