About this course

This course will help participants to improve their Information Security Management works with a clear understanding of the basic principles. Moreover, it will fully prepare participant for EXIN’s ISO/ IEC 27002 Information Security Management Foundation certification examination.


  • Basic knowledge of information security is necessary

 Course Benefits

  • Participants will be prepared for EXIN’s ISO 27002 Information Security Management exam.

 Who should attend?

  • IT professionals who working in an Information Security Management environment
  • Everyone in the organization who is processing information.

 Course Contents

  • Information and Security
    • The concept of Information
    • The value of Information
    • Reliability aspects: Confidentiality, Integrity and Availability (CIA)
  • Threats and Risks
    • The concepts of Threats, Risk and Risk Analysis
    • The relationships between Threats, Risks and the Reliability of Information
    • Types of Threats, Damage and Risk Strategies
  • Approach and Organization
    • Security Policy
    • Security Organization
    • Roles in Information Security
    • Segregation of Duties
    • Asset Data Ownership
    • Incident Management
    • Access Management
    • Identification, Authentication and Authorization
    • Deliverables
  • Security Measures
    • Importance of Measures
    • Physical Security Measures
    • Technical Security Measures
    • Organizational Security Measures

Training Info:

Language: Conducted in Thai Language
Duration: 2 Days
Venue: ACinfotec Training Center
16th Fl., Asia Centre Bldg., South Sathorn Rd.
Training Fees: Please call
Tel : 02 670 8980-3 ext. 304, 305
E-mail: training@acinfotec.com