Plan for Training and Awareness
Does it make sense to include the Confidentiality Agreement and the Declaration of the acceptance of isms documents in the Plan for Training and Awareness? As an awareness action?
Assign topic to the user
You can consider these documents in the context of awareness and training in two ways:
- as individual documents, where you explain their purpose and how to fill them in
- as part of processes where they are required (e.g., new employee onboarding, and information exchange between an organization's employees and external parts).
As part of a process examples, in the first case, the new employees need to be aware of documents they need to sign. In the second case, employees working with third parties need to be aware of which documents they have to require from the third parties to sign before the organization's information be sent to them.
This article will also help you regarding awareness and training:
- How to perform training & awareness for ISO 27001 and ISO 22301 https://advisera.com/27001academy/blog/2014/05/19/how-to-perform-training-awareness-for-iso-27001-and-iso-22301/
This material will also help you regarding awareness and training:
- Free Security Awareness Training: https://advisera.com/training/awareness-session/security-awareness-training/ - this is a series of 25 videos that cover various topics related to security.
Comment as guest or Sign in
Nov 07, 2019