Measure the effectiveness of training
Assign topic to the user
Answer:
If I have understood you well, you need to measure the effectiveness of training, if so, one way is to add the results of the evaluation of each attendee (I mean, testing of attendees), and calculate the average. And you can consider, for example, if the average is 80-100%, the effectiveness of training is ok.
You can also consider to measure the quality of the course, measuring the satisfaction of each attendee.
You can have a document with various metrics, and you can monitor the results, although it is not mandatory in ISO 27001.
Anyway, this article can be interesting for you “How to perform monitoring and measurement in ISO 27001” : https://advisera.com/27001academy/blog/2015/06/08/how-to-perform-monitoring-and-measurement-in-iso-27001/
And this free webinar can be also interesting for you “Webinar: ISO 27001 and ISO 27004: How to measure the effectiveness of information security?” : https://advisera.com/27001academy/webinar/i so-27001-iso-27004-measure-effectiveness-information-security-free-webinar/
Finally, these materials will help you to know more about the measurement in information security and ISO 27001:
- free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/
- book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
To be sure I am clear the standard does not require you to measure or monitor your training program, instead it just requires you to define training requirements and ensure they are completed?
Thanks for your help!
Yes, you need to define training requirements and ensure that they are completed, and the standard really defines that all employees of the organization (really only those who are relevant for information security) shall receive appropriate awareness and training (about information security).
By the way, if you are thinking to train your employees, our free resource “Why ISO 27001 - Awareness presentation”, can be useful for you, you can download it from our free download section “” : https://advisera.com/27001academy/free-downloads/
Finally, as you know, these materials will help you to know more about ISO 27001:
- free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/
- book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
Comment as guest or Sign in
Aug 24, 2016