Delegates are expected to have prior knowledge of the following

Management system:

• Understand the Plan-Do-Check-Act (PDCA) cycle

Information Security Management:

Knowledge of the following information security management principles and concepts:

• Awareness of the need for information security;

• The assignment of responsibility for information security;

• Incorporating management commitment and the interests of stakeholders;

• Enhancing societal values; 

• Using the results of risk assessments to determine appropriate controls to reach acceptable levels of risk;

• Incorporating security as an essential element of information networks and systems;

• The active prevention and detection of information security incidents;

• Ensuring a comprehensive approach to information security management;

• Continual reassessment of information security and making of modifications as appropriate.

ISO/IEC 27001

• Knowledge of the requirements of ISO/IEC 27001 (with ISO/IEC 27002) and the commonly used information security management terms and definitions, as given in ISO/IEC 27000, which may be gained by completing ISO 27001 standard requirements course.