Webinar EXIN Information Security 201302

4,567 views

Published on

Presentation with regard to EXIN's Information Security program based on ISO/IEC 27002

Published in: Career
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
4,567
On SlideShare
0
From Embeds
0
Number of Embeds
3,295
Actions
Shares
0
Downloads
50
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • ISO/IEC 27002 has highly practical character, this is the reason why our program is based on 002 and not 001 (which are the requirements for a IS management system). 002 Is the international consensus on best practices with proven security measures.
  • Webinar EXIN Information Security 201302

    1. 1. Information Security training &certification that works!Webinar February 2013Rita Pilon, Program Developer EXIN © EXIN
    2. 2. Content 1. EXIN’s philosophy on security 2. EXIN’s approach to security 3. Program Overview 4. Program benefits 5. Positioning 6. Supporting materials 7. Languages 8. Pricing 9. Where available?2 2/18/2013
    3. 3. 1. Philosophy Security is about trust • Information is most valuable asset • Relationship between IT & business is changing (outsourcing, cloud computing, etc.) • Complete dependency on information (suppliers) • World wide use of mobile devices and global networks • Complexity because of differences in international regulations and privacy rules3 2/18/2013
    4. 4. 1. Philosophy There’s no 100% security! Cost Benefits4 2/18/2013
    5. 5. 1. Philosophy Fill in the gap People are the weakest and the strongest link • Employees: awareness of value, risks and measures • Managers: responsible for security aspects • Security professionals: integrity in their work, career path5 2/18/2013
    6. 6. 2. Approach The process Awareness RISK ANALYSIS Maintain SECURITY PLANNING Evaluate Implementation6 2/18/2013
    7. 7. 2. Approach The need for EXIN’s Information Security certificate 1. Create awareness 2. Make a solid business case to get top management commitment (prevent incidents and reputation damage) 3. Motivate people to work on Information Security 4. Attention for management, organizational and process aspects7 2/18/2013
    8. 8. 2. Approach EXIN’s approach to security • Start with people • Building a culture of awareness • Based on the international standard set of ISO/IEC 27000 • Emphasizing practical learning8 2/18/2013
    9. 9. 2. Approach Culture of awareness9 2/18/2013
    10. 10. 2. Approach ISO/IEC 27002 • Code of practice for Information Security • 133 controls (counter measures) • The basics, learn what’s essential10 2/18/2013
    11. 11. 2. Approach Practical learning11 2/18/2013
    12. 12. 3. Program overview EXIN’s complete qualification12 2/18/2013
    13. 13. 3. Program overview Foundation • Foundation training creates awareness and basic understanding of information protection and terminology • Very practical (many examples) • No prerequisites • Training duration: 1-2 days (accreditation voluntary but recommended) • Every employee dealing with confidential information • Starting security professional13 2/18/2013
    14. 14. 3. Program overview Advanced • Information security perspectives (Business, Customer, Service provider/supplier) • Risk Management: Analysis, Controls, Remaining risks • Information security controls: Organizational, Technical, Other. • Ideal add-on for ITIL® and other ITSM professionals • Prerequisite: F • Practical assignments mandatory • Training duration: 2-3 days (accreditation mandatory) • Information Security Manager / Consultant • Line manager • Process Manager • Project Manager14 2/18/2013
    15. 15. 3. Program overview Expert • Establish an ISMS, Security policy, Risk analysis, Organizational change, Audit programs and ISO/IEC 27000 Certification • Practical project paper & oral exam • Variable training duration (coaching & classroom) • Prerequisites: F + A Level + 2 yrs experience •Chief Information Security Officer •Security Manager •Information Security Lead Implementer •Business Information Security Architect15 2/18/2013
    16. 16. 4. Program benefits Authorized Training Providers • Offer training to meet the growing demand for skilled and certified security professionals Organizations • Learn your employees how to deal with confidential information • Implementation of total security policy, focusing on people, next to tools and processes • Work according to the ISO/IEC 27000 standard set • Anticipate legislation and regulations Security Professionals • Meet the growing demand for skilled and certified security professionals • Know how to deal with security trends on mobile computing, cloud computing, etc. • Learn essentials of Information Security • Get acquainted with the ISO/IEC 27000 standard set • Offers complete career path16 2/18/2013
    17. 17. 5. Positioning Domains of EXINs Information Security program • Access control • Legislation • Architecture • Organization • Audits • Organizational change • Awareness • Personal data • Business case • Physical, technical, organizational • Business continuity measures • Business perspective • Policies and procedures • Classification • Reporting • Cloud • Risk analysis • Customer perspective • Roles and responsibilities • Employment cycle • Service provider perspective • Incident handling • Standards • Information governance • Suppliers • Information Security Management • Threats System (ISMS) • Value of information • Information security plan17 2/18/2013
    18. 18. 5. Positioning Management People & organization Processes Technique EXIN Other certifications18 2/18/2013
    19. 19. 6. Supporting materials ISFS ISMAS ISMES Preparation Guide    Sample Exam   Practical Assignments  Basic Training   Material Workbook  Case Study  Candidate Guide 19 2/18/2013
    20. 20. 7. Languages ISFS ISMAS ISMES English English English Dutch Dutch Dutch Portuguese Portuguese Japanese Chinese Spanish French Latin American Spanish German20 2/18/2013
    21. 21. 8. Pricing Price per level in Euros (2013) • IS Foundation : 169,40 • IS Management Advanced : 242,- • IS Management Expert : 544,5021 2/18/2013
    22. 22. 9. Where available? ISFS ISMAS ISMES Accredited Examination    Centers worldwide Open University   (NL) Prometric  Pearson Vue  EXIN Anywhere 22 2/18/2013
    23. 23. Thank you for your attention Thank you for your attention

    ×