Transition to ISO/IEC 27002:2022 Awareness Training Course

A short half-day course explaining the structure of ISO/IEC 27002:2022 and changes compared to the 2013 version.

ISO/IEC 27002 is the guidance document for organizations establishing an Information Security Management Systems in accordance with ISO/IEC 27001. It identifies information security controls best suited to their organization’s needs. This new update enables organizations to fully grasp the intent of risk management and risk mitigation in a more structured manner. The aim of this standard is to set a reference for information security controls to be used based on context-specific information security risk management.

The training also covers guidance for auditing the new controls.

Additional benefits include access to course material augmented with exclusive insights from our auditors and industry experts on ISO 27001. Course participants also gain free access to our online self-assessment tool where you can quickly implement and practice learnings as well as measure your company performance against specific management system standards.

Objective:

By the end of this training course, the participants will be able to:

  • Understand the key changes of the 2022 version as compared to the 2013 version of 27002;
  • Appreciate the concept, design, and architecture of the new ISO/IEC 27002:2022;
  • Gain an overview on how to audit the new controls of ISO/IEC 27002:2022 in organizational contexts.

Prerequisites: The main requirement for participating in this training course is having a general knowledge of the ISMS concepts and ISO/IEC 27001.

Audience:

This course is suitable for:

  • Project managers and consultants involved in and concerned with the implementation of an ISMS;
  • Expert advisors seeking to master the implementation of an ISMS;
  • Individuals responsible for ensuring conformity to information security requirements within an organization;
  • Members of an ISMS implementation team;
  • Members of ISMS internal auditors’ team.

 

All our public courses can also be delivered in-house at your premises either as standard or tailored depending on the needs and requirements of your business.

To find out which training courses we offer in your country, click on "Find a local course", select your country and navigate to  Information security and IT service management; or Contact us if you are interested or want to know more on in-house courses.

Management Systems Training

APQP4Wind Training

APQP4Wind is the common frame of reference to be used in the industry to strengthen the cooperation between manufacturers and suppliers

Environment and energy training

Public concern on environment and energy issues, stricter environmental legislation and increased media attention put more demands on businesses today

Food safety training

The food and beverage industry is moving to satisfy demands from international consumers and to open new market opportunities

Health and safety training

Your company is expected to care for its employees by managing safety and health in a professional way

Healthcare training

Every patient and service user across the globe should get the best care possible

Medical devices training

Production of medical devices is a strictly regulated business. In almost all countries, and for most medical products, there are requirements and standards to which manufacturers need to show compliance

Quality & performance training

An effective quality management system in place can improve your company’s quality processes and overall performance and success

Social responsibility training

Ensuring your commitment to safeguard human rights and operate in an ethical, responsible manner is essential to instill ethical practices and promote a culture of corporate sustainability