Back to Projects

ISMS Training Platform Design

Designed the content structure and user journey for an ISO 27001 compliant security awareness training platform.

FigmaMarkdownLMSISO 27001

Problem

Traditional security awareness training is often boring, generic, and disconnected from actual compliance requirements. Employees view it as a checkbox exercise rather than a culture-building tool.

Approach

I designed a training curriculum that maps directly to ISO 27001:2022 controls (specifically A.6.3).

  • Role-Based Paths: tailored content for Developers, HR, and Executives.
  • Micro-learning: 3-5 minute modules focused on a single concept.
  • Interactive Scenarios: "What would you do?" decision points instead of passive video watching.

Tools

  • Figma: UI/UX prototyping.
  • Markdown: Content authoring and version control.
  • ISO 27001 Standard: The framework for the curriculum.

Output & Impact

  • Increased engagement rates by 40% compared to the previous vendor.
  • Directly satisfied ISO 27001 audit requirements for awareness training.
  • Received positive feedback from developers for the "Secure Coding" module.

What I Learned

  • User experience (UX) is a security control. If security is hard to use, people will bypass it.
  • Mapping abstract regulations to concrete daily actions is the key to effective training.