IT Governance Blog on IT governance, risk management, compliance and information security.

Before we get on the ‘which’, lets explore ‘why’ and ‘how’ the ISO 27001 ISMS toolkit range has helped hundreds of organisations across the world to achieve ISO 27001 certification readiness.

‘WHY’ choose an ISO 27001 ISMS toolkit?

The hardest part of achieving ISO 27001 certification is the documentation of the Information Security Management System (ISMS). The documentation that is necessary to create a conforming system can, particularly in more complex businesses, be up to a thousand pages.

A toolkit can accelerate your ISO 27001 project immensely. The key benefits of a toolkit are:

• A toolkit is cheaper than one days’ consultancy
• Provides clear guidance on the role of risk assessment
• Template documents are easy to edit and customise
• Template documents save you time on research
• Template documents save you time on procedure writing
• Makes you your own expert
• An after sales support service
• 12 months of automatic updates

Then there’s the ‘HOW to do it’ issue.

The resource, time and management implications of making all this happen are immense. But that’s where toolkits come in. Our toolkits are precisely tailored to the requirements of ISO 27001 and contain pre-written documents, which can be tailored to your organisation. Our unique document support service offers after sales support to answer your queries, and each toolkit includes 12 months of free updates

Importantly, you do not want hundreds and hundreds of policies, after all ISO 27001 only requires 7 policies. By purchasing a toolkit, you receive a set of policies and procedures that really enable you to implement ISO 27001.

And finally, ‘WHICH’ toolkit is right for you?

	No 3 ISO27001 Comprehensive ISMS Toolkit Price: £1,795 Buy before 31st January and get a 25% discount code for any ITG Training Course!

	Digital Forensics Foundation Training 2ndFebruary 2012 in London RRP: £595.00 Price: £416.50 You Save:£178.50 (30%) Last minute booking discount applies to the 2 February course only.

And our ISO 27001 series of courses …

ISO27001 Certified ISMS Foundation Training

ISO27001 Certified ISMS Lead Implementer

ISO27001 Certified ISMS Lead Auditor Training

Information Security Foundation ISO 27002

ISO27001 Certified ISMS Internal Auditor

No 3 ISO27001 Comprehensive Toolkit

Have you checked your bank charges statement lately? Have you seen the charge for ‘PCI DSS compliance’? This isn’t a charge for compliance – this is really a charge for non-compliance. It’s costing most SMEs £600+ per annum to be non-compliant – without removing the risk of the website being hacked by criminals with card details stolen and your business massively damaged!

Take advantage of our last minute discount and attend the PCI Foundation Training Course on 27 January. You’ll save you the monthly cost AND remove the risk of being hacked!

	PCI Foundation Training Course 27thJanuary 2012 in London RRP: £495.00 Price: £346.50 You Save:£148.50 (30%) Last minute booking discount applies to the 27 January course only.

More to explore …

PCI DSS v2.0 Documentation Compliance Toolkit

DPA Foundation Course

HackerGuardian Scanning Service

The Information Commissioner’s Office (ICO) website shows that £541,000 in fines were issued during 2011 between 7 organisations, making the average fine £77,285! This is not counting the fines issued by courts following a prosecution. This is an increase of 238% over 2010, when the power to issue monetary penalty notices were first introduced to the ICO.

In 2010 there were 2 fines issued for a total of £160,000. If the same percentage increase occurs in 2012, over 2011, total fines issued could be over £1.8M!

Avoid these fines for as little as £156, here’s how:

	Complete Data Protection Toolkit Price: Just £156 This complete toolkit provides all the tools and resources you need to carry out your own DPA project and become compliant quickly and cost-effectively. The proven do-it-yourself approach towards achieving DPA compliance!

Facebook, LinkedIn, MySpace, Twitter & YouTube – these are the world’s most popular sites for people to share information, socialise and just hang out together, electronically. Blogging, Instant Messaging and Skype all play a significant role in enabling people to keep in touch with one another, wherever they are in the world.

What individuals do at home, they would like to do at work. But how should organisations regulate and manage the use, by their staff, of social media during work hours? And what sort of risks do organisations face, in terms of potential data loss, unregulated communication of confidential information, and work time?

The other part of the challenge is this: how should social media be used as part of a corporate communication and marketing strategy? How should the talents and credibility of individuals within the organisation be harnessed to position the organisation and its products or services in the best possible light? How should the organisation respond to criticism of it, whether on blogs or in a LinkedIn group?

	Social Media Governance Toolkit Comprehensive Suite of Documents and Tools for Social Media Governance. RRP: £199.95 Price: £149.95 You Save: £50.00

‘The Storm’ can be many things to many organisations and can include anything from the financial crises to Cybercrime and natuaral disasters. Rather than just surviving this year, why not take a risk based approach and put plans in place to thrive instead?

If you’re responsible for ensuring that your organisation responds to and survives any form of disaster – from an IT service discontinuity to a major act of nature – this Masterclass covers all the key steps in using BS25999 best practice for your business continuity arrangements.

	BS25999 Certified BCMS Lead Implementer Masterclass 26-27 January 2012 in London RRP: £995.00 Price: £950 You Save: £45.00

Every organisation that stores, transmits or processes card holder data must comply with the Payment Card Industry Data Security Standard (PCI DSS), which is enforced by the ‘acquiring bank’ through whom you have your merchant account.

But do you know what level merchant you are? Or which Self Assessment Questionnaire (SAQ) you have to fill in? Do you need guidance on where to start and what to do? Do you want a cost-effective, straightforward approach to this challenge?

How will the London Olympics effect you? Will your transaction volume increase significantly enough to justify a higher merchant level? Can PCI compliance act as a business enabler?

	PCI Foundation Training Course 27 January 2012 in London RRP: £495.00 Price: £395 You Save: £100.00

COBIT has become one of the internationally accepted best practice frameworks for IT governance and control in successful organisations.

Give your organisation the power to succeed in 2012. Attend the COBIT Foundation course, it carefully explains all elements of the COBIT framework using a case study and interactive presentations, and will help professionals understand how to use COBIT in a logical and understandable way.

	COBIT Foundation (2 day) Course Price: £895 23-24 January 2012 in London

With unemployment set to rise in 2012, you need to take positive action to demonstrate your worth, to add more value to your organisation and to keep ahead of your peers. With heightened desirability, in the eyes of your employer, you may even buck the trend to earn yourself a pay rise!

Attending the unique ISO27001 Certified ISMS Lead Auditor training course will add value to your organisation. Not only will your new qualification cover the accepted principles of auditing and look impressive on your CV, it will give you a detailed understanding of audit methodology, including audit preparation, managing an audit team, determining compliance with the standard, interview techniques, following audit trails and documenting evidence – These skills are valuable to any organisation across many different standards – Book Today!

	ISO27001 Certified ISMS Lead Auditor 23-27 January 2012 in London RRP: £1,995.00 Price: £1,195 You Save: £800.00