BS7799-2:2002 Information Security Management Systems

Fetri Miftach, Agus Pracoyo & Sarwono Sutikno
BS7799-2:2002 Information Security Management Systems

Date:22nd March 2005
Length: 1 Day
Language: Bahasa Indonesia
Venue: Hotel Borobudur, Jakarta - Indonesia.
Cost: US$300 including refreshments, lunch, materials and certificate of completion
Telephone: 021 391 8330
Fax: 021 391 8328
Who Should Attend:
  • Top and Middle Management.
  • Information Security Professionals (IT Security Officers etc) seeking to enhance their knowledge in ISMS
  • IT and Audit Executives seeking to implement ISMS in their organizations.
  • IT and Non-IT Professionals who are interested to learn more about ISMS and its importance.
Course Description:
BS7799-2:2002 is a recognized industry standard for benchmarking Information Security Management Systems (ISMS) within an organization.
This one full day course is custom-designed for top and middle management, internal consultants, IT auditors and industry professionals. This workshop will enable the delegates to have a better understanding of ISMS as a whole and the benefits that its implementation can bring to an organization.
Issues such as highlighting the importance of information security will be covered; the overall structure of ISO17799 and BS7799-2:2002 and a detailed preview of the contents as well as the roadmap towards an effective ISMS implementation.
Among other issues that will be discussed too are the key areas that need to be focused in order to attain compliance and certification.
Several exercises and test scenarios will be provided to the participants to help enhance their understanding of the theories taught. Our syllabus is closely aligned to that of the international standard.
Course Outline:
8:00Welcoming & Registration
08.30Information security management systems (ISMS) Part 1 - Sarwono Sutikno
  • Introduction
  • Compliance with BS 7799 Part 2
  • PDCA Model
  • Establish the ISMS
  • Implement and operate the ISMS
  • Monitor and review the ISMS
  • Maintain and improve the ISMS
10:00Coffee Break
10.30Information security Management systems (ISMS) Part 2 - Sarwono Sutikno
  • System of documentation
  • Management responsibility
  • Management review of the ISMS
  • Risk Analysis
  • Overview of Implementation ISMS (1 slide)
  • Overview of Certification (1 slide)
12:00Lunch
13:00Implementation of BS7799/ISO17799 Controls by Agus Pracoyo
  • Security Policy
  • Organizational Security
  • Asset Classification and Control
  • Personnel Security
  • Physical and Environmental Security
  • Communication and Operations Management
  • Access Control
  • System Development and Maintenance
  • Business Continuity Management
  • Compliance
14:30Coffee Break
15:00ISMS Certification Audits by Fetri Miftach
  • Assessment
  • ISMS Scope of certification
  • Audit methodology
  • Audit report
  • Certification decision
  • Surveillance and reassessment procedures
16:30Q & A
Date:22nd March 2005
Length: 1 Day
Language: Bahasa Indonesia
Venue: Hotel Borobudur, Jakarta - Indonesia.
Cost: US$300 including refreshments, lunch, materials and certificate of completion
Telephone: 021 391 8330
Fax: 021 391 8328

Fetri Miftach, Agus Pracoyo & Sarwono Sutikno
About the Tutors

Fetri Miftach, PhD, IRCA/BS7799, is a Principal Consultant at Bellua Asia Pacific.

Fetri has a deep understanding of security methodology for the banking and telecommunication industry in Indonesia since 1999 and provided services to Ministry of Finance, Bank of Indonesia, Bank Mandiri, Telkomsel, Ratelindo, Merpati Airlines and many others.

Expert in business process analysis from an information security perspective, risk assessment analysis, analysis and policy development that fit to specific industry need, educational and socialization, forensic analysis, including making technical report used to support an intrusion case in a court of law.

Fetri has an extensive background in Real Time System technology, especially in the aerospace, banking and telecommunication industry.

Fetri Miftach is a resident speaker at Bank of Indonesia where he provides regular workshops and seminars on Basel II, BS7799/ISO17799, Risk Management, Information Security awareness... He's also one of the first person in Indonesian to become certified by IRCA as a BS7799 ISMS Auditor.

Agus Pracoyo, CISSP, CISA - Bellua Asia Pacific.

Agus Pracoyo was senior security consultant in Schlumberger Network Solutions (a.k.a Omnes) for 5 years.

Agus performed Network Security audit and penetration testing services for Bank of Tokyo Mitsubishi (BOTM), Bank BRI and others. Some of the works that were performed including network security design, network security implementation, network security assessment, ecommerce application, and project management.

He has also been conducting Check Point training, security seminar for several events such as Microsoft security seminar or the ecommerce seminar held by Exconindo.

He was an IBM mainframe and UNIX system administrator (Solaris) for 3 years in ARCO Indonesia. Presently he is also acting as Technical Manager/Information Security Consultant in Indokom Primanusa focusing on vulnerability and threat management as well as Security Policy Developing and Audit.

Dr. Sarwono Sutikno, Associate Professor, Institut Teknologi Bandung.
ISACA Academic Advocate.
Member Board of Trust IASII.

Dr. Sutikno specializes in various aspects of information security management, with research interests in information security management system (ISMS), embedded security devices and cryptology.

In addition to being a member of both ISACA and ISSA, he holds an ISMS BS 7799 Auditor Certificate from IRCA and received his Doctor of Engineering degree from the Tokyo Institute of Technology.

Back to the complete workshops list.

PT Bellua Asia Pacific - Bellua Cyber Security Conferences & Workshops