ISM Implementation & Assessment Preparation

5 Days | Face-to-Face| Includes Certificate of Attendance

By attending this course, students will be equipped with the discipline and confidence to maintain
systems in line with the Australian Governments Information Security Manual (ISM).

Request Brochure

The Australian Governments Information Security Manual (ISM) is becoming an essential requirement for anyone maintaining classified or sensitive government information or systems. The governance requirements for these systems are complex and demand a significant degree of knowledge, skills and effort from anyone involved with implementing or maintaining these systems. By attending this course, students will be equipped with the discipline and confidence to maintain systems in line with Australian government requirements.

Upcoming Course Dates

Want to understand our delivery methods better?

Read more here on the difference between a virtual and face-to-face course.

Learning Outcomes

By the end of this course, students should:

  1. Have an understanding of the ISM, PSPF and their requirements.
  2. Gain an in-depth awareness and application of individual security controls detailed within the ISM.
  3. Be able to practically apply security concepts from the ISM.
  4. Understand documentation, accreditation and certification requirements as part of the ISM.

Knowledge Transfer

Vital Learning Edge trainers have been both working in the industry and training/sharing their knowledge for over 25 years. We only use trainers who are actively working in the field, certified and can deliver.

Practical Examples

Trainers and their real world experience make the difference! Our trainers are able to relay content and draw from their real-world application to help solidify your understanding in a practical way.

Professional Development

This course is eligible for Professional Development Hours/Units. At the end of this course you will be provided with a certificate of attendance stating the hours you completed for you to submit where required.

Who Should Attend

Pre-requisites: Existing cyber security knowledge is an essential requirement.

This course is designed for:

System owners

Chief Information Security Officers (CISOs)

System Maintainers

Anyone responsible for a system maintaining classified information

Course Trainer

This workshop will be delivered by Edward Farrell.

Edward Farrell is a cyber security consultant with over fifteen years experience in cyber security and nineteen years experience in the IT industry. As the director of Mercury, he has conducted and overseen the delivery of over 1000 independent cyber security audit activities and incident responses in the past eight years.

Edward is also a qualified CERT IV trainer and assessor and member of the ISC2 global board of directors. 


Read his full bio here.

Course Content

Vital Learning Edge’s 5-day ISO ISM Implementation & Assessment Preparation Course covers the following Module content:

workshop

Introduction to the ISM 

  • Introduction to the ISM, PSPF and requirements.
  • Refresh on key language and terminology.
  • Threats and risks the ISM is intended to address.
  • ISM updates and resources.

Governance requirements

  • Cyber security roles
  • Procurement and outsourcing
  • Security documentation
  • Risk management
  • Evaluated Products

Introduction to the threat environment

  • Unclassified threat brief
  • Aligning systems to the threat

Physical and social security

  • Physical Security
  • Personnel Security
  • Insider threat management
  • Equipment requirements, include labelling, sanitisation, destruction and disposal
  • Access control

Communications requirements

  • Communications infrastructure
  • Communications systems
  • Networking
  • Gateways
  • Cryptography

Systems requirements

  • Enterprise mobility
  • System hardening
  • System management
  • System monitoring

Application specific requirements

  • Email
  • Databases
  • Software development

Peripherals

  • Media
  • Data transfers

Incident Response 

  • Walkthrough of incident response requirements.
  • Interaction with the wider organisation, including Business Continuity and Disaster recovery.
  • Conduct of an incident response activity.
  • Discussion of reporting requirements.

System scoping and framing

  • Introduction to the Infosec Registered Assessors Program (IRAP).
  • Planning and preparing for an IRAP assessment.
  • Defining the scope of a system.
  • Identifying and selecting controls.

Cloud environments

  • Introduction to Cloud Specific IRAP assessment requirements.
  • Introduction to shared responsibility model and how accountability is derived.
  • Tailoring the ISM to the Cloud.
  • Conduct of an incident response activity.

Documentation and preparation requirements

  • Presentation of documentation and requirements for a system.
  • Walkthrough of example templates and files.

IRAP assessments

  • Method and requirements behind IRAP assessments.
  • Documentation and demonstration techniques.
  • IRAP assessment reports, requirements, the good and the bad.

Need assistance or have a questions?
Get in touch with our friendly customer service team today >

Fees & Inclusions

Vital Learning Edge’s offers a range of delivery options for this course. As such, for more details on inclusions simply select your preferred option for more detail on fees and what you will receive:

Face-to-Face Training

$4,000+ GST per person

 

What you will receive:

  • 5 day course delivered by an experienced trainer
  • Course workbook including exemplar documentation and templates
  • Catering at the venue for the course duration
  • Certificate of Attendance at course completion

Virtual Instructor-led Training

 

Pricing TBC – Coming Soon… Contact us to express your interest in a virtual session. 

 

What you will receive:

  • 5 day course delivered by an experienced trainer
  • Course workbook including exemplar documentation and templates
  • Certificate of Attendance at course completion

Private/In-house Training

 

Contact us for an obligation free quotation.

What Are You Waiting For? Give yourself the EDGE and get certified!

Stand out from the crowd and get the EDGE you need to succeed with a certification. Vital Learning Edge offers a range of internationally recognised training certification courses plus industry standard trainings to enhance your capabilities. 

See upcoming course dates