27001LI.PNG

Information Security

Master the implementation and management of Information Security Management Systems (ISMS) based on ISO/IEC 27001

Who should attend?

  • Managers or consultants involved in Information Security Management

  • Expert advisors seeking to master the implementation of an Information Security Management System

  • Individuals responsible for maintaining conformance with ISMS requirements

  • ISMS team members

Course agenda

Day 1 | Introduction to ISO/IEC 27001 and initiation of an ISMS

  • Training course objectives and structure

  • Standards and regulatory frameworks

  • Information Security Management System (ISMS)

  • Fundamental information security concepts and principles

  • Initiation of the ISMS implementation

  • Understanding the organization and its context

  • ISMS scope

Day 2 | Planning the implementation of an ISMS

  • Leadership and project approval

  • Organizational structure

  • Analysis of the existing system

  • Information security policy

  • Risk management

  • Statement of Applicability

Day 3 | Implementation of an ISMS

  • Documented information management

  • Selection and design of controls

  • Implementation of controls

  • Trends and technologies

  • Communication

  • Competence and awareness

  • Security operations management

Day 4 | ISMS monitoring, continual improvement, and preparation for the certification audit

  • Monitoring, measurement, analysis, and evaluation

  • Internal audit

  • Management review

  • Treatment of nonconformities

  • Continual improvement

  • Preparing for the certification audit

  • Certification process and closing of the training course

Day 5 | Certification Exam

Learning objectives

  • Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks

  • Master the concepts, approaches, methods and techniques used for the implementation and effective management of an ISMS

  • Learn how to interpret the ISO/IEC 27001 requirements in the specific context of an organization

  • Learn how to support an organization to effectively plan, implement, manage, monitor and maintain an ISMS

  • Acquire the expertise to advise an organization in implementing Information Security Management System best practices

Examination

The “PECB Certified ISO/IEC 27001 Lead Implementer” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:

Domain 1 | Fundamental principles and concepts of an Information Security Management System (ISMS)

Domain 2 | Information Security Management System controls and best practices based on ISO/IEC 27002

Domain 3 | Planning an ISMS implementation based on ISO/IEC 27001

Domain 4 | Implementing an ISMS based on ISO/IEC 27001

Domain 5 | Performance evaluation, monitoring and measurement of an ISMS based on ISO/IEC 27001

Domain 6 | Continual improvement of an ISMS based on ISO/IEC 27001

Domain 7 | Preparing for an ISMS certification audit

General information

  • Certification fees are included on the exam price

  • Training material containing over 450 pages of information and practical examples will be distributed

  • A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued

  • In case of exam failure, you can retake the exam within 12 months for free

For additional information, please contact us at info@ciso-dpo.online.

Dowload Brochures [here].