Are you ready to protect your personal & business data & information?

Did you know that:

• Data breaches, a form of cybercrime, cost less in the UK than the global average?

• Security budgets in the UK are also smaller than the global average?

• Most companies in the country have suffered from security incidents (breatches), usually attributed to phishing?

• Up to 88% of UK companies have suffered breaches in the last 12 months? That is lower than Germany (92%), France (94%), and Italy (90%).

According to Hiscox:

• One small business in the UK is successfully hacked every 19 seconds

• This corresponds to approx. 65000 attempted cyber attacks to hack small- to medium-sized businesses (SMBs) in the UK per day.

• This equates to around 1.6 million of the 5.7 million SMBs in the UK per year.

• Thirty-seven percent of UK companies have reported a data breach incident to the UK Information Commissioner’s Office (ICO) in the past 12 months. Seventeen percent had reported more than one incident.

Cisco estimates 53% of SMBs suffered a security breach globally in 2018. So what is the solution? First you have to put in place an information security framework based on a recognised international standard, such as ISO 27001. This internationally recognised management system standard specified the requirements for designing, developing implementing, and maintaining an Information Security Management System (ISMS). You may ask the question: does the business developing and implementing an ISMS need to become certified to the above standard? The short answer is ... it depends. ISO standards, by design, are voluntary, meaning that you can adopt them to improve your business and its performance, without seeking formal certification from an independent third party (Registrar). So, becoming certified to an ISO standard, such as 27001, is (technically) a business decision. You must decide if there is business justification for the certification. In today's global economy and marketplace, data and information are considered as assets that have assigned monetary value to the organisation collecting, processing, maintaining, and using them for business purposes. This comes with the responsibility for data protection and its use for legitimate purposes. This is the reason why there are rules and regulations in place to protect both, corporate and personal data/ information, such as GDPR.

Today many corporations demand that, in order to include a supplier of products or services on their "preferred vendors' list", the supplier's organisation must have in place e.g. an information security system, to manage and protect the personal and corporate data and information entrusted to them. In such cases there is business justification supporting the supplier organisation's decision to be certified to a standard such as ISO 27001.

Business Training & Consulting Services (BT&CS) deliveres training in information security/ cycbersecurity at four levels of knowledge and competency:

• Foundation 1 day

• Internal Auditor 1 day

• Lead Implementer 1 day

• Lead Auditor 2 days.

Completing the Foundation training is prerequisite for attending any of the other three levels of training.

Our 5-day course covers all four levels, in a condensed form, within five working days.

Course Details

• Duration: 5 days (09.00 - 17.00)

• Format: online instructor-led training via zoom.us

• Price per delegate: £1250 + VAT

• Deadline for course payment and registration is typically 2 days before the course start, by 5 p.m.

• The above price covers 5 days of online instructor-led training, delegate workbook, course exam, and certificate

The course and contact details are posted on our website and on LinkedIn.