[Cisspstudy] For Sanil - ISO27001

Rajendra Bhupathi bhrpr at yahoo.com
Thu Apr 23 14:32:34 EDT 2009 

Hi,
I just wanted to Clarify one thing, CISSP and ISO27001 are in 2 Different Directions though both talk about Security.

CISSP is about Knowing how to implement Security, risk involved in each of the areas and how to mitigate them
ISO27001 is a standard and it covers all aspcts that are discussed in CISSP (Technical, Physical & Administrative Controls)
 
if you are already in the area of Information Security, understand IT and Business well and your interest is towards Auditing (compliance validating and testing) then I prefer either CISA or ISO 27001 LA.
 
My take on this, if interested in complaince and wanted to do better do either CISA / CISSP and do ISO27001 LA (Dont prefer 3 days cource as in first 2 Days LA covers those topics).
 
 


 
Rajendra Prasad Raju.Bh.
CISA, PMP, ITILF, BCCP


 
 

--- On Sat, 18/4/09, Prakash <prakash2757 at yahoo.com> wrote:


From: Prakash <prakash2757 at yahoo.com>
Subject: Re: [Cisspstudy] For Sanil - ISO27001
To: "The CISSP Study Mailing list" <cisspstudy at cccure.org>
Date: Saturday, 18 April, 2009, 6:10 AM






Bit disagree with Tushar,

There are 2 courses from BSI - ISO27001 Lead Implementer & ISO27001 Lead Auditor.

LI is basic 3 days
LA is advanced 5 days.

As a starter, one should go with LI which gives you idea of what ISO is all about & what happens in audits of ISO27001. It also outlines 133 controls of ISO27001.

Once you are done with LI, you can do audit in real time for external clients or internally in company. after 3-4 audits go ahead with LA course. This is what I have followed.

Though there is no restrictions of doing ISO course, even a fresh college graduate can do it but one will lack knowledge of the subject.

Its like a person doing CISSP who has no idea what is security or really fresh in security.

Hope it helps.

PS: Do change subject line of the mail :)


--- On Fri, 4/17/09, Tushar G <tush.kg at gmail.com> wrote:


From: Tushar G <tush.kg at gmail.com>
Subject: Re: [Cisspstudy] Verizon - 2009 Data Breach Investigations Report
To: "The CISSP Study Mailing list" <cisspstudy at cccure.org>
Date: Friday, April 17, 2009, 9:46 PM


Hello Sanil,


ISO 27001 LA is the course which you can look out for.
Most of the implementation aspects of information security are covered in various professional certification exams including CISSP.


ISO27001 LA course will surely help... Thats my perspective...I did that course after my CISA, CISM.
Lead Auditor is kind of fun as well.....It was 5 days course and was a kind of team play and team work while understanding the Audit perspective....Will surely help....I did that from BSI when they announced that course through ISACA Mumbai Chapter...


Regards,
Tushar Gokhale



On Fri, Apr 17, 2009 at 6:03 AM, sanil nadkarni <friend18_friend at yahoo.com> wrote:






Hello Prakash , 
 
I was thinking of doing the ISO 27001 Implementation course from BSI mumbai
i am thinking of planning my carrer in compliance , will think course help
they are charging 20 k for 3 days , wanted to know if it is worth doing this 
and there is another course of Lead auditor , should i go for this course 
wanted to know after CISSP , confused should i do this course or not go for this course 
can you please guide me on this 
 
Thanks 
sanil 

--- On Thu, 16/4/09, Prakash <prakash2757 at yahoo..com> wrote:


From: Prakash <prakash2757 at yahoo.com>
Subject: [Cisspstudy] Verizon - 2009 Data Breach Investigations Report
To: cisspstudy at cccure.org
Date: Thursday, 16 April, 2009, 4:11 PM







Hello All,

I am sharing 2009 Data Breach Investigations Report published by Verizon Business RISK Team

http://www.verizonbusiness.com/resources/security/reports/2009_databreach_rp.pdf

DOWNLOAD

Hope security community finds it useful.


-----Inline Attachment Follows-----



_______________________________________________
cisspstudy mailing list
cisspstudy at cccure.org
http://cccure.org/mailman/listinfo/cisspstudy_cccure.org



Add more friends to your messenger and enjoy! Invite them now.
_______________________________________________
cisspstudy mailing list
cisspstudy at cccure.org
http://cccure.org/mailman/listinfo/cisspstudy_cccure.org



-----Inline Attachment Follows-----


_______________________________________________
cisspstudy mailing list
cisspstudy at cccure.org
http://cccure.org/mailman/listinfo/cisspstudy_cccure.org


-----Inline Attachment Follows-----


_______________________________________________
cisspstudy mailing list
cisspstudy at cccure.org
http://cccure.org/mailman/listinfo/cisspstudy_cccure.org



      Bollywood news, movie reviews, film trailers and more! Go to http://in.movies.yahoo.com/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20090424/f849bf0b/attachment.html>

More information about the cisspstudy mailing list