Best Practices in Implementing Security Policies: the ISO 27001 and ISO 27002


overall satisfaction for this course

?Average calculated from scores obtained from 51 participants who took this course.
  • Duration 2 days
  • Regular fee 895
  • Preferential fee 750?
  • Locations
    • Montreal

Accreditation and partners association

  • Project Management Institute 12 PDU


To provide the knowledge and skills required to implement and audit an information security management system according to the ISO 27001:2013 and ISO 27002:2013 standards.

Targeted audience

IT vice-presidents, security directors, network administrators, system administrators and IT consultants.



Customer Testimonials

The content and presentation are excellent.

Francisque V. / Auditeur, Banque de la République d'Haïti


  • The concept of an ISMS (Information Security Management System)
  • The PDCA model (Plan-Do-Check-Act)
  • Traces and recordings
  • The inventory of assets
  • Risk analysis
  • Mitigating risk
  • The ISO 27001 certification process
  • The various methods for measuring security
  • Organization measures vs. technical measures according to ISO 27002
  • Choosing indicators
  • The ISO 27004 Information Security Measurement Program standard
  • Roles and responsibilities
  • Strategic, tactical and operational dashboards
  • Exercises and case study


*Unless stated otherwise, all sessions are in French.
  • Montreal

    November 2 to November 3 2017

Trainer(s) assigned(s)

Other course(s) in this category