Windows Server - Auditing Security According to ISO/IEC 27001 and ISO/IEC 27002 version 2022

The course is primarily intended for administrators and IT security managers who either would like to implement or have to work in Windows environment which is the subject of ISO/IEC 27001 and ISO/IEC 27002 standards. The course tries to show correct procedures, facts and reasons for the participants so that they will be able to justify and illustrate their security decision within the given standards. The course could also be suitable  for auditors of these standards. It enables them to understand the demands and possibilities of Windows networks set up on Active Directory. 

Distinguish  between two standards ISO/IEC 27001 and ISO/IEC 27002 according to second version from 2022
Understand the latest trends and differences in these standards between version 1 from 2005 and version 2 from 2013 and version 3 from 2022
See the connection between the demands of these standards and the operation and security of networks set up on Windows and Active Directory
See some other Czech and Slovak legislative standards and laws connected to these standards in context
Discover weaknesses of your networks and prepare a plan for their improvement
Be able to discuss the auditors requirements and illustrate the current and the planned state of parameters and procedures

Knowledge which encompassies of the courses which are listed in the sections Previous courses and Related courses
Good understanding of TCP/IP and DNS technologies

ISO/IEC 27001 standard, second version from 2022
Basic articles and principles of ISO/IEC 27001 (2022)
Comparison ISO/IEC 27001 (2022) with the previous first version from 2005
ISO/IEC 27001 in the context of PC network set up on Windows and Active Directory
ISO/IEC 27002 standard, the second version from 2022
ISO/IEC 27002 Information Security Policies in the context of networks set up on Windows
ISO/IEC 27002 Human Resource Security in the context of networks set up on Windows
ISO/IEC 27002 Asset Management in the context of networks set up on Windows
ISO/IEC 27002 Access Control in the context of networks set up on Windows
ISO/IEC 27002 Cryptography in the context of networks set up on Windows
ISO/IEC 27002 Physical and Environmental Security in the context of networks set up on Windows
ISO/IEC 27002 Operations Security in the context of networks set up on Windows
ISO/IEC 27002 Communications Security in the context of networks set up on Windows
ISO/IEC 27002 System Acquisition, Development and Maintenance in the context of networks set up on Windows
ISO/IEC 27002 Supplier Relationships in the context of networks set up on Windows
ISO/IEC 27002 Information Security Incident Management in the context of networks set up on Windows
ISO/IEC 27002 Information Security Aspects of Business Continuity Management in the context of networks set up on Windows
Comparison of previous version 1 ISO/IEC 27002 standard from 2005 with the updated third version from 2022

Preparation for certification exams

Microsoft certification exams, except MCM certifications, do not require students to attend the official MOC course to pass the exam
Official Microsoft MOC courses as well as our own GOC courses are suitable for preparation for Microsoft certification exams such as MTA, MCP, MCSA, MCSE or MCM 
A prime goal of the course is not the preparation for the certification exams of its own, but learning the theoretical principles and managing the practical skills which are necessary for the effective work with the certain product
MOC courses usually cover almost all topics required for the relevant certification exams, but they do not always give every topic  the same amount of time and emphasis as the completion of certification exam may require 
Students can always use e.g books from MS Press (so called Self-paced Training Kit) and also the electronic self-test software for they exam preparation

Related courses

Windows Server - Enterprise PKI Deployment [GOC173]

Windows Server - Implementing and Administering Security [GOC175]