COURSE PROGRAM
- ISO 17025 and Requirements Related to Information Security Management
- ISO 27001 as a Model for Information Management System Requirements. Adaptation to a Laboratory
- Laboratory-Specific Requirements
-
- Information Security Management Policies
- Organization of Information Security
- Tasks and Responsibilities
- Management of Mobile Devices and Remote Work
- Human Resource Security: Before, During, and After Employment
- Information Classification
- Media Management
- Information Access Controls: Records, Privileges, Connections, and Passwords
- Cryptography to Protect Confidentiality, Authenticity, and/or Integrity of Information
- Physical and Environmental Security
- Operational Security: Logging and Monitoring
- Software Installation
- Communication Security: Network Control, Messages, and Other Information Exchanges
- Acquisition, Maintenance, and Control of Information Management Systems
- Control of Service Providers Related to Information and Security Management (Backups, Servers, Programs, etc.)
- Incident Management
- Compliance with Legal and Contractual Requirements
- Information Security Review
-
