Recently, the training courses of ISO27001 information security administration system and ISO2000 IT service administration lead auditor were successfully hosted by Informationization Management Department of Xinjiang branch, China Mobile and held by NSFOCUS in the training center of Xinjiang branch, China Mobile. A senior lead auditor and trainer from DNV (a global service provider for managing risk) was invited to the training. Students are from Informationization Management Department, Network Department, Internal Auditing Department, Data Department, Network Administration Center, New Service Development Center, Service Support Center of Xinjiang Branch, China Mobile, and from NSFOCUS ISO27001 Certification Tutorship program.
Lots of modes are employed in this training course, such as standard introduction, group discussion, case analysis, and scenario simulation. Students learnt a lot in the establishment and implementation of the information security management system, and the PDCA (Plan, Do, Check and Act) model, got to know the flows for planning, implementing and tracing the audition of information security management system, and found out the way for performing IT service management. All the students agree that this training promotes information security consciousness of staff in Xinjiang Branch, China Mobile, regulates its security behaviors, consummates its internal monitoring system, protects key information assets, and immensely helps sustain secure, consistent and healthy development of the company service, making it fully prepared for the ISO27001 certification.
|
