Welcome > Information and Cyber Security Training

Enlarge the text size Reduce the text size View:


Information and Cyber Security Training

Our digital footprint is getting bigger every day. We are working with increasing numbers of partners with whom we need to share data. How can we ensure that our information is being handled responsibly within and outside our organisation? And what about GDPR?


ISO 27001 provides a framework for managing information (whatever the format: electronic, spoken, hard copy) and limiting breaches of information security. If cyber security in particular is your focus, then PAS 555 training can help. It provides a structured framework for managing the digital security of your organisation. Details on our Information and Cyber Security courses are below

Have a look at the training calendar for 2019

Cyber Security Training

Our one-day course on cyber security provides an overview of cyber security systems (based on PAS 555) including the following:


  • Risk in governance and management
  • Technical security controls
  • Monitoring techniques
  • Incident management
  • Business as usual restoration
  • The relationship with other standards/guides
  • Auditing against the PAS 555


Implementing an information security management system

This two-day course provides an introduction to information security and enables participants to develop and implement an information security management system (ISMS) that meets the needs of the organisation and the requirements of the standard:


  • Understanding the context
  • Identifying the requirements of ISO 27001
  • Mapping the current situation
  • Planning your implementation
  • Identifying necessary resources
  • Monitoring progress and measuring performance


Internal ISMS Auditor Course

Internal audits can contribute significantly to maintaining the effectiveness of an information security system and lead to improved performance. A well-established internal audit programme will highlight problems and enable them to be detected before they are found by an external auditor.


During this two-day course, delegates will be guided through the elements of an internal audit based on an information security management system (ISMS). They will learn the fundamentals of the standard as well as how to plan, conduct and report on an internal audit. They will also gain the practical auditing knowledge needed to review the effectiveness of an ISMS.


  • Describe the purpose of an information security management system and the requirements of ISO 27001
  • Understand the audit model
  • Undertake the role of an internal auditor to plan, conduct, report and follow-up an audit in accordance with ISO 19011 and by interpreting the updated requirements of ISO 27001
  • Conduct a ‘mock’ audit based on good process identification, sampling and questioning


Contact Kerrie

Contact us for course dates and locations, or download our course calendar.


If you have four or more delegates, you may find that an in-company training is more cost-effective for your organisation. Contact us for a quote.


For more information about any courses or to enrol on one of our courses, please contact us on +44 (0)1322 31 48 55 or kerrie.cullen@afnor.co.uk .


Accessibility | Legal information | Contact