The course focuses on providing participants with the skills and knowledge needed to develop effective security policies that meet the standards of ISO 27001.

Throughout the course, it explores the fundamental principles of information security and analyzes the specific requirements of ISO 27001 regarding security policy creation. Participants will learn to identify information security risks in their organizations and develop policies and procedures to effectively mitigate these risks.

Topics include information classification, access management, data protection, incident management, and business continuity. Additionally, best practices for drafting, communicating, implementing, and maintaining security policies over time are examined.