Cyberday.ai
Get started
Login
Topics
ISO 27001
NIS2
Getting started
Framework management
Product security
Settings & advanced
Trial and subscription
User management
Community
Documentation
Personnel guidelines
Reporting
Task management
GDPR
Internal auditing
Personnel security
Risk management
Working as a partner
Continuous improvement
Team collaboration
Show all topics
Webinars
NIS2: Intro to NIS2 Directive and Cyberday
ISO 27001: Build a cyber security plan, that gets you compliant
May's monthly review for Cyberday admins (5/2024)
Show all webinars
Videos
Asset documentation
Continuously improving your ISMS
Cyberday overall intro
ISO 27001 and certification audit fundamentals
ISO 27001 and personnel awareness
ISO 27001 and risk management
ISO 27001 introduction
NIS2 introduction
Show all videos
Helps
Documentation
For admins
For partners
Frameworks
Guideline mgmt
Other features
Reporting
Setup and integrations
Task mgmt
User management
Show all helps
Blogs
Access Control & MFA (NIS2 21.2): Build A Solid Foundation with ISO 27001 Best Practices
Understanding HR Security Basics for ISO 27001 & NIS2 Compliance
Build your NIS2 measures for Business Continuity and Backups with ISO 27001
Best Practices from ISO 27001 for Secure System Acquisition and Development: Create your NIS2 measures
Potential Struggles IT Companies might Encounter with Incident Identification and Reporting Today
Show all blogs
Content library
Kiitos! Saat jatkossa uutiskirjeen sähköpostiisi joka perjantai.
Valitettavasti jotain meni pieleen. Voit olla yhteydessä tiimi@tietosuojamalli.fi.
Kiitos! Saat jatkossa uutiskirjeen sähköpostiisi joka perjantai.
Valitettavasti jotain meni pieleen. Voit olla yhteydessä tiimi@tietosuojamalli.fi.

ISO 27001 (part 2/5): Security controls, risk management and SoA

We will present the basics of risk management, defining security controls and utilizing the statement of applicability.
Register now
Wednesday
,
6.9.2023
at
15:00
Presented by
Aleksi Pulkkanen
Co-Founder & COO @ Cyberday / Agendium

Register for live webinar

By registering, you quarantee your spot in the live session. You will also receive a recording automatically after the webinar.

Webinar description

This is the second webinar on our 5-part webinar series "Towards ISO 27001 certification". Parts 2-4 cover themes, which are vital for an organization preparing for an ISO 27001 certification audit. Part 5 is about staying compliant and continuously improving your information security management system (ISMS).

The webinar series utilizes Cyberday as training tool (cyberday.ai). It will be used to build your organization's own management system and gather all information needed for the certification audit to one single place.

Webinar is suitable for information security key people in organisations, who are interested in systematic information security management and demonstrating good security level for customers.

Webinar agenda

1. Information security management system, ISMS

  • Prerequisite for certification
  • Connects risk management, defining security controls and monitoring the operation
  • Maintenance and continuous improvement

2. Security controls and ISO 27002

  • Intro to standard and different control domains
  • Different current states for controls

3. Risk treatment and defining new information security controls

  • Decreasing a risk
  • Monitoring defined controls

4. Control implementation and management in Cyberday

  • Owners and review intervals
  • Assurance information
  • Proactive improvement through risk management
  • Reactive improvement through incident management

5. Statement of Applicability, SoA

  • Controls are implemented through tasks
  • Automatic updates
  • Treatment of non-applicable controls
  • Versioning and sharing for auditor

We welcome questions and comments throughout the webinar! These are also an important part of the webinar content.


P.s. Registering for the webinar doesn't commit you to anything. You may also participate either "live" or via the recording, which you will receive automatically via email after the webinar is over.

Content

Share webinar

Webinar frequently asked questions

Is ISO 27001 same as ISO27001, IEC 27001 or ISO 27001 standard?

Yes you will find many kind of references to ISO 27001 information security standards. The official the full name of ISO 27001 is “ISO/IEC 27001 – Information technology — Security techniques — Information security management systems — Requirements.”

ISO 27001 is the leading international standard focused on information security, published by these two mentioned organizations, the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). Both of these are leading international organizations that develop international standards.

ISO 27001 standard is the main part of a set of standards developed to handle information security: the ISO/IEC 27000 series. The series is deliberately broad in scope, covering more than just privacy, confidentiality and IT/technical/cybersecurity issues.

27001 ISO, framework ISO 27001, ISO 27k... all refer to the same thing.

Why is ISO 27001 important?

Not only does the standard provide companies with the necessary know-how for protecting their most valuable information, but a company can also get certified against ISO 27001 and, in this way, prove to its customers and partners that it safeguards their data. ISO 27001 certification is probably the best proof for customers that information security is taken seriously and systematically managed in the organization.

Individuals can also get ISO 27001-certified by attending a course and passing the exam and, in this way, prove their skills to potential employers.

Because it is an international standard, ISO 27001 is easily recognized all around the world, increasing business opportunities for organizations and professionals.

How do I register for the webinar?

Click yourself to the desired webinar from the list above and fill out the registration form at the bottom of the page.

If you wish, you can also subscribe to our free newsletter, in which we provide weekly the most important digital security news with short interpretations and a list of upcoming webinars.

We use the Livestorm webinar software and you need to accept its termos of use when registering.

Can I get a recording of the webinar?

Yes - you will automatically receive a link to the recording in your email if you have registered for the webinar. You can also forward the recording to your colleagues if you wish.

How do I take part on the webinar?

Once registered, you will receive a message in your email with a direct link to the webinar room. You'll need a personal passcode, which can also be found in the email.

Chrome, Firefox, or Safari are recommended for participation, but with all modern browsers the webinar usually works great.

What if I can't make it?

No worries - you will automatically receive a link to the recording in your email and you can participate by viewing it at a time that suits you. If the webinar raises questions, you can ask, for example, directly at team@cyberday.ai.

Can I comment / ask in the webinar?

Yes, of course. In a webinar, you can comment either publicly using the Chat view or privately using the Questions tab.

Is my participation visible to others?

Participants will not see other participants in the webinar. If you comment in the public Chat section, your first name and comment will also be visible to others.

Other upcoming webinars

May's monthly review for Cyberday admins (5/2024)

Wednesday

15

.

5

.

at

16:00

Summary of latest development, highlights from cyber security news and other topics from Cyberday team.

45

 minutes

admins

Register

ISO 27001: Build a cyber security plan, that gets you compliant

Wednesday

24

.

4

.

at

15:00

We will go through the basics of Cyberday and how ISO 27001 standard can support systematic information security management. We will also cover the 2022 update to the standard.

45

 minutes

general

Register

NIS2: Intro to NIS2 Directive and Cyberday

Tuesday

23

.

4

.

at

14:00

We will present the basics of the directive (e.g. who's in the scope, what changed from NIS and how should you react) and Cyberday ISMS as the central place for own information security efforts.

45

 minutes

critical industries

Register
Academy home
Webinars
ISO 27001 (part 2/5): Security controls, risk management and SoA
Don't wait? Book a demo now >>

Live broadcast in...

00
d
00
h
00
min
00
s
Live webinar in:
Cyberday app available in:

ISO 27001 (part 2/5): Security controls, risk management and SoA

Part of webinar series "Towards ISO 27001 certification"
Webinar agenda
Presented by

Aleksi Pulkkanen

Co-Founder & COO @
Cyberday / Agendium Ltd
You can take part on the webinar live or via recording
Once you have registered for the webinar, you will automatically receive a link to the recording after the live broadcast.
Register for next live session:
Wednesday
,
6.9.2023
,
at
15:00
(45 min)
Book your spot
Watch a recording instantly:
Previous session arranged
1 month ago
appx. 1 mo ago
(duration 51 min)
Watch now!
Tietosuojamalliin luottavat isot ja pienet, yritykset, kunnat ja järjestöt.
about 45 minutes
This webinar is part of webinar series:

Towards ISO 27001 certification

0
1
Intro to ISO 27001 standard and Cyberday ISMS
Coming up: 
24.4.2024
0
2
Security controls, risk management and SoA
Coming up: 
6.9.2023
0
3
Certification audit fundamentals
Coming up: 
21.6.2023
0
4
Staff training, guidelines and policy documents
Coming up: 
9.8.2023
0
5
Certification achieved - what next?
Coming up: 
23.8.2023
We will present the basics of risk management, defining security controls and utilizing the statement of applicability.

Webinar description

This is the second webinar on our 5-part webinar series "Towards ISO 27001 certification". Parts 2-4 cover themes, which are vital for an organization preparing for an ISO 27001 certification audit. Part 5 is about staying compliant and continuously improving your information security management system (ISMS).

The webinar series utilizes Cyberday as training tool (cyberday.ai). It will be used to build your organization's own management system and gather all information needed for the certification audit to one single place.

Webinar is suitable for information security key people in organisations, who are interested in systematic information security management and demonstrating good security level for customers.

Webinar agenda

1. Information security management system, ISMS

  • Prerequisite for certification
  • Connects risk management, defining security controls and monitoring the operation
  • Maintenance and continuous improvement

2. Security controls and ISO 27002

  • Intro to standard and different control domains
  • Different current states for controls

3. Risk treatment and defining new information security controls

  • Decreasing a risk
  • Monitoring defined controls

4. Control implementation and management in Cyberday

  • Owners and review intervals
  • Assurance information
  • Proactive improvement through risk management
  • Reactive improvement through incident management

5. Statement of Applicability, SoA

  • Controls are implemented through tasks
  • Automatic updates
  • Treatment of non-applicable controls
  • Versioning and sharing for auditor

We welcome questions and comments throughout the webinar! These are also an important part of the webinar content.


P.s. Registering for the webinar doesn't commit you to anything. You may also participate either "live" or via the recording, which you will receive automatically via email after the webinar is over.

Register for live webinar

By registering, you quarantee your spot in the live session. You will also receive a recording automatically after the webinar.

Webinar frequently asked questions

Is ISO 27001 same as ISO27001, IEC 27001 or ISO 27001 standard?

Yes you will find many kind of references to ISO 27001 information security standards. The official the full name of ISO 27001 is “ISO/IEC 27001 – Information technology — Security techniques — Information security management systems — Requirements.”

ISO 27001 is the leading international standard focused on information security, published by these two mentioned organizations, the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). Both of these are leading international organizations that develop international standards.

ISO 27001 standard is the main part of a set of standards developed to handle information security: the ISO/IEC 27000 series. The series is deliberately broad in scope, covering more than just privacy, confidentiality and IT/technical/cybersecurity issues.

27001 ISO, framework ISO 27001, ISO 27k... all refer to the same thing.

Why is ISO 27001 important?

Not only does the standard provide companies with the necessary know-how for protecting their most valuable information, but a company can also get certified against ISO 27001 and, in this way, prove to its customers and partners that it safeguards their data. ISO 27001 certification is probably the best proof for customers that information security is taken seriously and systematically managed in the organization.

Individuals can also get ISO 27001-certified by attending a course and passing the exam and, in this way, prove their skills to potential employers.

Because it is an international standard, ISO 27001 is easily recognized all around the world, increasing business opportunities for organizations and professionals.

How do I register for the webinar?

Click yourself to the desired webinar from the list above and fill out the registration form at the bottom of the page.

If you wish, you can also subscribe to our free newsletter, in which we provide weekly the most important digital security news with short interpretations and a list of upcoming webinars.

We use the Livestorm webinar software and you need to accept its termos of use when registering.

Can I get a recording of the webinar?

Yes - you will automatically receive a link to the recording in your email if you have registered for the webinar. You can also forward the recording to your colleagues if you wish.

How do I take part on the webinar?

Once registered, you will receive a message in your email with a direct link to the webinar room. You'll need a personal passcode, which can also be found in the email.

Chrome, Firefox, or Safari are recommended for participation, but with all modern browsers the webinar usually works great.

What if I can't make it?

No worries - you will automatically receive a link to the recording in your email and you can participate by viewing it at a time that suits you. If the webinar raises questions, you can ask, for example, directly at team@cyberday.ai.

Can I comment / ask in the webinar?

Yes, of course. In a webinar, you can comment either publicly using the Chat view or privately using the Questions tab.

Is my participation visible to others?

Participants will not see other participants in the webinar. If you comment in the public Chat section, your first name and comment will also be visible to others.

Related webinars

Viewable immediately

ISO 27001 (part 3/5): Certification audit fundamentals

We will present the most important elements of a successful ISO 27001 certification audit.

Register >>

webinar

Wednesday

21

.

6

.

at

15:00

Viewable immediately

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

We will present the creation of an automatized and compliant staff training and awareness procedure.

Register >>

webinar

Wednesday

9

.

8

.

at

15:00

Viewable immediately

ISO 27001 (part 5/5): Certification achieved - what next?

We will present ways for successfully operating and continuously improving your ISMS.

Register >>

webinar

Wednesday

23

.

8

.

at

15:00

Other upcoming webinars

Viewable immediately

Admin training (part 3/5): Risk management and security control implementation

We will present the most important features that are required for setting up systematic information security management in an organization.

Register >>

webinar

Wednesday

30

.

5

.

at

14:00

Viewable immediately

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

We will present ways for successfully operating and continuously improving your ISMS.

Register >>

webinar

Wednesday

7

.

6

.

at

14:00

Fill out the form below - you will receive a link in your email to view the webinar.

Subscribe to Academy today

Elevate Your Knowledge with Exclusive Access to Weekly Webinars, Video Courses, Help Articles, and Blogs.

Kiitos! Saat jatkossa uutiskirjeen sähköpostiisi joka perjantai.
Valitettavasti jotain meni pieleen. Voit olla yhteydessä tiimi@tietosuojamalli.fi.
Topics
Internal auditing
Personnel security
Settings & advanced
Personnel guidelines
NIS2
Show all
Webinars
NIS2: Intro to NIS2 Directive and Cyberday
ISO 27001: Build a cyber security plan, that gets you compliant
May's monthly review for Cyberday admins (5/2024)
Show all
Videos
ISO 27001 introduction
NIS2 introduction
ISO 27001 and certification audit fundamentals
Asset documentation
ISO 27001 and personnel awareness
Show all
Helps
Documentation
For partners
Other features
Reporting
Guideline mgmt
Show all
Blogs
Access Control & MFA (NIS2 21.2): Build A Solid Foundation with ISO 27001 Best Practices
Understanding HR Security Basics for ISO 27001 & NIS2 Compliance
Build your NIS2 measures for Business Continuity and Backups with ISO 27001
Best Practices from ISO 27001 for Secure System Acquisition and Development: Create your NIS2 measures
Potential Struggles IT Companies might Encounter with Incident Identification and Reporting Today
Show all
Content library
Open content libraryLabs
Kiitos! Saat jatkossa uutiskirjeen sähköpostiisi joka perjantai.
Valitettavasti jotain meni pieleen. Voit olla yhteydessä tiimi@tietosuojamalli.fi.