Cyprus
England
Greece
Ireland
CIIP is the Industry Recognised ISO 27001 Security Standard Implementation Certification.
Those wishing to apply an in-depth knowledge of risk-based information security to their workplace should choose this sought-after certification. CIIP provides essential knowledge of the ISO 27001 security standard’s components. Holding this certification demonstrates a proven understanding of information security risk management principles, information assets and how to apply the standard in a tailored approach to performing risk assessments.
CIIP Certification Path & Tracks:
CIIP Exam Syllabus
- Why do you need certification to ISO 27001?
- What the Information Security Management System (ISMS) is and what it is trying to achieve
CONFIDENTIALITY, INTEGRITY, AVAILABILITY AND AUDIT
- Over view of the stages of the ISMS
- Defining an Information Security Policy
- Defining the scope of the ISMS
IDENTIFYING INFORMATION ASSETS
- What are information assets?
- Creating an asset classification system
UNDERTAKING A RISK ASSESSMENT
- Identifying asset values, threats and vulnerabilities
- Creating a usable and simple risk methodology
- Using risk tools
- Practical exercise – under taking a risk assessment
- Results and conclusions resulting from an assessment
AUDITING
- What does auditing achieve?
- How should auditing be conducted?
- Different types of audit
- The phase 1 and 2 ISO 27001 audits
- Certification – what is next?
MANAGING RISK
- Risk measurement
- Risk reduction and acceptance techniques
- Practical exercise – determining control objectives
- Selecting control objectives and controls
- Security in depth
- ISO 27001 control objectives and controls
- The application of countermeasures
- Practical exercise – creating a workable countermeasure
- Additional controls not in ISO 27001
- Preparing a Statement of Applicability
- The need to review and audit the ISMS
WHO IS THE CIIP CERTIFICATION FOR?
- Those with an interest / responsibility for information security
- IT, Financial and HR Management
- Computer Auditors
- IT Security Officers
- Information Security Professionals
‘The CIIP Certification has enabled me to gain a real insight into the standard by clearly demonstrating how the individual components fit together with the processes that underpin it. I have been able to implement it in a seamless fashion with minimal disruption to my company. The majority of the material covered within this certification is vitally important to security professionals and I therefore highly recommend it’
Information Security Professional, Healthcare industry
