Editorial Calendar

Starting Q1-2010, I will try to publish at least two training sessions per month.  I am planning to deliver 30 to 60 minutes capsules based on the following monthly editorial calendar:

1. ISO family of standards, why use a standardized framework, the ISO:27001 standard and structure, the certification process
2. ISO:27001 Clause 4 – ISMS requirements overview, defining the scope, document & record management, minimal documentation requirements
3. Defining roles and responsibilities, planning the ISMS implementation project
4. Risk management, risk analysis and the statement of applicability (SOA)
5. ISO:27001 Clause 5 – Management responsibilities, sample ISO:27001 management awareness training
6. ISO:27001 Clause 6 – Internal audits, building an internal audit program
7. ISO:27001 Clause 7 – Management reviews, sample agenda
8. ISO:27001 Clause 8 – Continuous improvement, root cause analysis, corrective & preventive action plans
9. Annex A control objectives (A.5 to A.10)
10. Annex A control objectives (A.11 to A.15)
11. Other useful standards to ISMS implementation and business improvement, ISO20000/BS25999/PCI-DSS/ISO9001 overview
12. Integrating and unifying multiple management systems to prevent redundancy and improve efficiency

If you have any request or recommendations please do not hesitate to comment!

Martin Dion (CISSP/CISM)
ISO:27001 Lead Auditor & Trainer
CTO @ Above Security