2. The duration of this course is 5 Days
The course is delivered in workshop style with interactive discussions and
case studies
The course material is provided and accredited by PECB
The participants are expected to be familiar with fundamental information
security concepts and have some hands on professional experience
On the fifth day, PECB ISO 27001:2013 Certification Exam is conducted
Course Overview
3. Course Contents
Day 1: Introduction
• Introduction to management systems
and the process approach
• Presentation of the standards ISO
27001, ISO 27002 and ISO 27003 and
regulatory framework
• Fundamental principles of Information
Security
• Preliminary analysis and establishment
of the level of the maturity level of an
existing information security
management system based on ISO
21827
• Writing a business case and a project
plan for the implementation of an ISMS
Day 2: Planning
• Defining the scope of an ISMS
• Development of an ISMS and information
security policies
• Selection of the approach and
methodology for risk assessment
• Risk management: identification, analysis
and treatment of risk (drawing on
guidance from ISO 27005)
• Drafting the Statement of Applicability
4. Course Contents
Day 3: Implementing
• Implementation of a document
management framework
• Design of controls and writing
procedures
• Implementation of controls
• Development of a training &
awareness program and
communicating about the information
security
• Incident management (based on
guidance from ISO 27035)
• Operations management of an ISMS
Day 4: Controlling
• Controlling and Monitoring the ISMS
• Development of metrics, performance
indicators and dashboards in
accordance with ISO 27004
• ISO 27001 internal Audit
• Management review of an ISMS
• Implementation of a continual
improvement program
• Preparing for an ISO 27001 certification
audit
Day 5 :Certification Exam
5. Course Facilitator
MUHAMMAD ALI
INAYAT
CHIEF LEARNINGADVISOR | PUBLIC SPEAKER | AUTHOR
KINVERG
PMP | CISA | ITIL | CERTIFIED ISO 27001 LEAD AUDITOR
CERTIFIED ISO 27001 LEAD IMPLEMENTER
HND IN INFORMATION SYSTEMS MEMBER PISA
MEMBER PMI USA | EMBER ISACA USA | MEMBER SEI USA
“ I believe that Learning andValue are directly proportional - the more you Learn, the
more value you achieve in your personal and professional ventures.
Muhammad Ali Inayat
6. Brief Profile
Muhammad is a learning and development thought leader.
He has advised global companies, governments, defense sector
entities, academia and social organizations. His clientele includes
CocaCola, Mott Macdonalds, Telenor, Engro Polymer, Saudi Aramco,
Pakistan Airforce, Saudi Airforce, Saudi Industrial Cluster, Zong
China Mobile,PTCL(Etisalat),AbacusConsulting, Lahore Stock
Exchange,Autosoft Dynamics, MCB, Bank of Punjab, PITC, Shaukat
Khanam Hospital, Infotech Group, Interactive Group,SMEDA GoP,
Special Communications Organization, Nadec, Power Information
Technology Company,Lahore Stock Exchange, Karachi University,
Technlogix and PRAL.
7. Awards &
Recognition
Muhammad is a regularly invited to speak at national and international conferences and
seminars. His speaking interests include entrepreneurship, personal Leadership and
Project & Quality Management. He is also serving on the mentor panel ofTURN8 Dubai,
Mobilink Discover and StartupCup USA . Following are some of his recent speaking
engagements:
• Honored Idea for improving public sector Governance by e-Governance Idea hunt
Punjab IT Board
• Key Note Speaker at Leadership Conference University of Management &Technology
• Key Note Speaker at Building Leadership Capabilities Conference in Karachi University
• Proposed MasterG Mobile App for revolutionizing the teacher's training in Pakistan
• Developed KAT (Kinverg's Learning Design and Delivery Method) for value-centric
learning interventions
• Panel Member at Pakistan Information Security Summit
• Speaker at UAE Cyber Security Summit Dubai
• Honored Idea for improving public sector Governance by e-Governance Idea hunt
Punjab IT Board
8. Multicultural
Adherence
Muhammad has interacted with diverse audience coming from different industries,
cultural backgrounds, education and organizational positions.
His learning interventions were attended & appreciated by multiple nationalities
representing Pakistan, KSA, UAE, Russia, UK, Bangladesh, India, Philippines, Syria,
Palestine, Eritrea and Germany
9. Advisory
Assignments
Muhammad’s gains hands-on professional experience through delivery of Advisory
Services. This helps him to align his learning interventions to the ground-realities and keep
him updated on the latest industry developments and needs.
• Information Security Management System Implementation at Detasad (Dutch telecom
subsidiary in Riyadh KSA)
• Software development & support processes review (Lahore stock exchange)
• IT Strategy & Learning Material Review (Command and Staff College Quetta)
• ITIL Review and Roadmap Development (MTBF Ministry of Finance )
• Project Management Policy and Process Development
• SAP's ASAP Methodology Review & Alignment
• Planning, Implementation and Certification of CMMI for Development
• Planning, Implementation and Certification of ISO-27001
• Information Security Audits & Reviews (multiple)
• Software Development and Support Process Audit (multiple)
10. Learning
Interventions
• Executive Project Management Workshop
• PMP Preparation Workshops (Multiple- Saudi Arabia)
• PMP Preparation Workshops (Multiple- Pakistan)
• Practical Project Management (Multiple-Pakistan)
• Information Security Lead Implementer Workshop (Multiple-Pakistan)
• IT Service Management Overview (Riyadh-KSA)
• Improving IT Controls by using COBIT (Lahore-Pakistan)
• Change Management: A Road Less Travelled (Lahore-Pakistan)
• Barriers in Personal Leadership (Karachi University)
• Information Technology Fundamentals for Micro Entrepreneurs (Sialkot Chamber of
Commerce)
• Software Development Processes based on CMMI for Development (Multiple-Pakistan)
• Conducting Effective IT Audits (Multiple- Pakistan/Saudi Arabia)
• Panel Member : National Cyber Security Summit Karachi
• Guest Speaker : UAE Cyber Security Summit Dubai
11. Accreditation
Kinverg is AuthorizedTraining Partner with PECB
for providing ISO 27001:2013 Lead Implementer
Courses.
This 5-days training program is accredited by
PECB an globally accepted
12. Course Fee
Course Fee
• The Course Fee is PKR
65,000 which includes
course materials, lunch
and refreshments,
course certificates and
business networking
• To be paid in full as
Cross Check in the name
of “KINVERG”
Discounts
• Kinverg Alumni Discount : 10%
discounts for all Kinverg’s
Alumni
• Referral Discount : 5%
discount on each referral
• Group Discount : 10% discount
upon 2 or more nominations
from same organization
• Kinverg has the right to cancel
and/or change course details