Companies that have established and managed the ISO 27001 Information Security Management System in their businesses gain many benefits by obtaining the certificate of this system. For example, first of all, it has been proven how important the protection of information is in the company. Information assets are protected against possible attacks and malicious use. With the information being confidential, reliable and accessible, customers have a sense of trust towards the company. Of course, the company will have a competitive power against its competitors in the sector. The image and reputation of the company will increase.

But most importantly, as computer networks and information systems will be under constant control, the company will be protected from threats and dangers from computers. Activities related to information security are supported by process and documentation studies. The ISO 27001 Information Security Management System is based on the Quality Management System standards, and the documentation work as a requirement of this system is very important.

In order to implement the TS ISO / IEC 27001 Information Security Management System standards in various organizations and to ensure the continuity of the application, TURCERT certification bodyIn addition to certification studies, it also provides consultancy and training services. The training subjects of the TURCERT certification body regarding the TS ISO / IEC 27001 Information Security Management System are as follows:

  • TS ISO / IEC 27001 Information Security Management System Basic Training
  • Information Security Management System Documentation Training
  • Information Security Management System Internal Audit Training
  • TS ISO / IEC 15504 Software Process Evaluation Training

From these trainings, Information Security Management System Documentation TrainingInformation Security Policy and Information Security Objectives, Information Security Manual required by the system, the process documents required by the standard, the feasibility statement, the risk table, are given in order to show how to prepare all the documents that the company will need in order to ensure the implementation and control of the processes.

The main topics of the Information Security Management System Documentation Training given by the TURCERT certification body are:

  • Document structure of Information Security Management System
  • Information Security Handbook
  • procedures
  • Applicability statement
  • Risk table
  • Programs
  • Application instructions, forms, charts and similar support documents
  • Document control
  • Case studies

It is compulsory to continue these trainings in order to achieve the expected benefit from the Information Security Management System Documentation Training, which is a one or two-day training as required. Persons participating in this training should have received the TS ISO / IEC 27001 Information Security Management System Basic Training. At the end of the training, the certificate of achievement is given to the successful participants and the participant certificate is given to the others.

The instructors of the TURCERT certification body are also experienced and specialized in this area and many examples are shown during these trainings. This is also possible if the company requires training to be provided in their work environment.

If more information is required on the Information Security Management System Documentation Training or if it is requested to provide this training, experienced staff of TURCERT certification body will be with you immediately.