IT Governance Blog on IT governance, risk management, compliance and information security.

Cyber crime is on the rise and all organisations need to ensure they protect themselves and their critical assets from cyber attack. Start this January with these time limited special offers:

	ISO 27001 Cyber Security Toolkit Get a free Cyber Security Self Assessment Tool – Until 31stJanuary! RRP: £1,864.00 Price: £1,695 You Save: £169.00 FREE!

Book Training …

	ISO 27001 Information Security Combination Course 21 to 24 February 2012 in Manchester RRP: £2,209.00 Price: £1,994 You Save:£295.00 This specially priced package includes attendance at both the ISO27001 Certified ISMS Foundations course, and ISO27001 Certified ISMS Lead Implementer Class.

More to explore …

Digital Forensics Foundation Training 30% off the February course!

Cyber Risks for Business Professionals £10 off for January!

ISO27001 Certified ISMS Internal Auditor Training 30% off the February course!

We want to help you to deliver amazing IT Service Management.
Start now, in January, with the help of these special offers. Don’t miss out, buy today:

	ITSM, ITIL® & ISO/IEC 20000 Implementation Toolkit By Shirley Lacy and Jenny Dugmore Price: £495 FREE ICT Strategy Toolkit – Buy before the end of January

More to explore …

ISO/IEC 20000 Documentation Toolkit Save £50 in January

ISO/IEC 20000 Practitioner Certificate Course Save £100 – book now

Implementing Service Quality based on ISO/IEC 20000 Save £4 in January

Following on from last week’s discussion ‘Which, Why and How is an ISO 27001 ISMS toolkit right for you‘, I thought we should take a closer look at the ISO 27001 implementation team and how our special January offer is the logical step that your organisation should take to implement ISO 27001.

Organisations that are serious about implementing ISO 27001, and successfully achieve certification, develop the in-house capability and skills through training.

They also take a risk based approach to develop the information security management System (ISMS), using our tried and tested ISO 27001 ISMS toolkits.

Buy any variation of the ISO 27001 ISMS toolkit before 31st January and get 15% off any ITG Training Course.

	No 3 ISO27001 Comprehensive ISMS Toolkit Price: £1,795 Buy before 31st January and get a 15% discount code for any ITG Training Course!

Our range of training courses offer a structured learning path from Foundation to Advanced level in ISO27001 and ISO27002 together with related topics that include PCI DSS, Data Protection Act and Digital Forensics.

Training the ISO 27001 implementation team:

• In any ISO 27001 project you will have a Lead Implementer that is capable of leading their organisation to successful certification. The ISO27001 Certified ISMS Lead Implementer Masterclass is the perfect course for this role.
• You will need a team of Internal Auditors to effectively audit compliance with the ISO 27001 standard and against the controls contained in ISO 27002. You should book multiple people onto our essential ISO27001 Certified ISMS Internal Auditor training course.
• An understanding of the best practice guidance as outlined in ISO27002 is essential to ensure the compliance to ISO27001 in any organisation. Information Security Foundation based on ISO/IEC 27002 serves as a practical guideline for all members of staff as they initiate, implement and maintain an information security programme.

Save 15% on any of these courses when you buy an ISO 27001 ISMS toolkit before the end of January!

Before we get on the ‘which’, lets explore ‘why’ and ‘how’ the ISO 27001 ISMS toolkit range has helped hundreds of organisations across the world to achieve ISO 27001 certification readiness.

‘WHY’ choose an ISO 27001 ISMS toolkit?

The hardest part of achieving ISO 27001 certification is the documentation of the Information Security Management System (ISMS). The documentation that is necessary to create a conforming system can, particularly in more complex businesses, be up to a thousand pages.

A toolkit can accelerate your ISO 27001 project immensely. The key benefits of a toolkit are:

• A toolkit is cheaper than one days’ consultancy
• Provides clear guidance on the role of risk assessment
• Template documents are easy to edit and customise
• Template documents save you time on research
• Template documents save you time on procedure writing
• Makes you your own expert
• An after sales support service
• 12 months of automatic updates

Then there’s the ‘HOW to do it’ issue.

The resource, time and management implications of making all this happen are immense. But that’s where toolkits come in. Our toolkits are precisely tailored to the requirements of ISO 27001 and contain pre-written documents, which can be tailored to your organisation. Our unique document support service offers after sales support to answer your queries, and each toolkit includes 12 months of free updates

Importantly, you do not want hundreds and hundreds of policies, after all ISO 27001 only requires 7 policies. By purchasing a toolkit, you receive a set of policies and procedures that really enable you to implement ISO 27001.

And finally, ‘WHICH’ toolkit is right for you?

	No 3 ISO27001 Comprehensive ISMS Toolkit Price: £1,795 Buy before 31st January and get a 25% discount code for any ITG Training Course!

	Digital Forensics Foundation Training 2ndFebruary 2012 in London RRP: £595.00 Price: £416.50 You Save:£178.50 (30%) Last minute booking discount applies to the 2 February course only.

And our ISO 27001 series of courses …

ISO27001 Certified ISMS Foundation Training

ISO27001 Certified ISMS Lead Implementer

ISO27001 Certified ISMS Lead Auditor Training

Information Security Foundation ISO 27002

ISO27001 Certified ISMS Internal Auditor

No 3 ISO27001 Comprehensive Toolkit

Have you checked your bank charges statement lately? Have you seen the charge for ‘PCI DSS compliance’? This isn’t a charge for compliance – this is really a charge for non-compliance. It’s costing most SMEs £600+ per annum to be non-compliant – without removing the risk of the website being hacked by criminals with card details stolen and your business massively damaged!

Take advantage of our last minute discount and attend the PCI Foundation Training Course on 27 January. You’ll save you the monthly cost AND remove the risk of being hacked!

	PCI Foundation Training Course 27thJanuary 2012 in London RRP: £495.00 Price: £346.50 You Save:£148.50 (30%) Last minute booking discount applies to the 27 January course only.

More to explore …

PCI DSS v2.0 Documentation Compliance Toolkit

DPA Foundation Course

HackerGuardian Scanning Service

Will your current Business Continuity or Disaster Recovery Plan really do the job?

With the ever increasing operational risks, many UK private and public sector organisations have developed a Business Continuity or Disaster Plan to enable them to recover from the disruption caused by an unforeseen event. These risks are many and complex and include natural disasters, economic factors, IT failure, civil emergencies, terrorism and cybercrime.

But given the growth in Business Continuity Planning, why do so many businesses (large and small) still fail to recover?

The experience of our Business Continuity consultants has shown that many Business Continuity plans fail as a result of the following:

• Inadequate planning with insufficient details
• Lack of consideration of the complete needs of an organisation
• Inadequate testing or practice drills
• Failure to gain support from senior-level managers and directors

BS25999, the Business Continuity Standard defines the specification and best practice guidelines to develop an effective Business Continuity Management System (BCMS).

To ensure your organisation adopts best practice and becomes fully complaint to BS25999, we would like to invite you to book on the 2- day BS25999 Certified BCMS Lead Implementer training course at a special discounted rate of £750 + VAT.

	BS25999 Certified BCMS Lead Implementer Training Course 26-27 January 2012 in London RRP: £995.00 Price: £750 You Save: £245.00

With the growth and global acceptance of the ISO/IEC 27001:2005 as the default standard for Information Security Management, there has been an increased demand for qualified ISO27001 Lead Auditors. To ensure success as an ISO27001 Lead Auditor, you will need to gain a thorough knowledge of the standard and its audit procedures together with qualifications that are accredited by a respected independent organisation.

The ISO27001 Certified ISMS Lead Auditor training course has been designed to support the growing need for skilled and certified ISO27001 Lead Auditors. Delegates will learn how to plan and execute ISO27001 audits and upon successful completion of the course will be awarded the Certified ISMS Lead Auditor (CIS LA) qualification issued by the International Board for IT Governance Qualifications (IBITGQ).

	ISO27001 Certified ISMS Lead Auditor 23-27 January 2012 in London RRP: £1,995.00 Price: £995 You Save: £1000.00

Facebook, LinkedIn, MySpace, Twitter & YouTube – these are the world’s most popular sites for people to share information, socialise and just hang out together, electronically. Blogging, Instant Messaging and Skype all play a significant role in enabling people to keep in touch with one another, wherever they are in the world.

What individuals do at home, they would like to do at work. But how should organisations regulate and manage the use, by their staff, of social media during work hours? And what sort of risks do organisations face, in terms of potential data loss, unregulated communication of confidential information, and work time?

The other part of the challenge is this: how should social media be used as part of a corporate communication and marketing strategy? How should the talents and credibility of individuals within the organisation be harnessed to position the organisation and its products or services in the best possible light? How should the organisation respond to criticism of it, whether on blogs or in a LinkedIn group?

	Social Media Governance Toolkit Comprehensive Suite of Documents and Tools for Social Media Governance. RRP: £199.95 Price: £149.95 You Save: £50.00