This course enables participants to learn about the best practices for implementing and managing an Information Security Management System (ISMS) as specified in ISO/IEC 27001:2013, as well as the best practices for implementing the information security controls of the eleven domains of the ISO 27002. This training also helps to understand how ISO/IEC 27001 and ISO 27002 relate with ISO 27003 (Guidelines for the implementation of an ISMS), ISO 27004 (Measurement of information security) and ISO 27005 (Risk Management in Information Security).
Who Should Attend?
Members of an information security team
IT Professionals wanting to gain a comprehensive knowledge of the main processes of an Information Security Management System (ISMS)
Staff involved in the implementation of the ISO/IEC 27001 standard
Technicians involved in operations related to an ISMS
CxO and Senior Managers responsible for the IT governance of an enterprise and the management of its risks
DURATION: 2 DAYS
Introduction to Information Security Management System (ISMS) concepts as required by ISO/IEC 27001
Introduction to the ISO/IEC 27000 family of standards
Introduction to management systems and the process approach
Fundamental principles information security
General requirements: presentation of the clauses 4 to 8 of ISO/IEC 27001
Implementation phases of ISO/IEC 27001 framework
Continual improvement of Information Security
Conducting an ISO/IEC 27001 certification audit
Implementing controls in information security according to ISO/IEC 27002 and Certification Exam
Principles and design of information security controls
Documentation of an information security control environment
Monitoring and reviewing the information security controls
Examples of implementation of information security controls based on ISO 27002 best practices
To understand the implementation of an Information Security Management System in accordance with ISO/IEC 27001
To understand the relationship between an Information Security Management System, including risk management, controls and compliance with the requirements of different stakeholders of the organization
To know the concepts, approaches, standards, methods and techniques allowing to effectively manage an Information Security Management System
To acquire the necessary Knowledge to contribute in implementing an Information Security Management System (ISMS) as specified in ISO/IEC 27001
EXAMINATION & CERTIFICATION
The "PECB Certified ISO/IEC 27001 Foundation" exam fully meets the requirements of the PECB Examination and Certification Program (ECP). The exam covers the following competence domains:
Domain 1: Fundamental principles and concepts of information security
Domain 2: Information Security Management System (ISMS)
The "PECB Certified ISO/IEC 27001 Foundation" exam is available in different languages.
Duration: 1 hour
For more information about the exam, refer to the section on ISO/IEC 27001 Foundation Exam
A certificate of "PECB Certified ISO/IEC 27001 Foundation" will be issued to participants who successfully passed the exam and comply with all the other requirements related to this credential.
For more information about ISO/IEC 27001 certifications and the PECB certification process, refer to the section on ISO/IEC 27001 Foundation.
Certification fees are included in the exam price
A student manual containing over 200 pages of information and practical examples will be distributed to participants
A participation certificate of 14 CPD (Continuing Professional Development) credits will be issued to participant
In case of failure of the exam, participants are allowed to retake the exam for free under certain conditions
Please rotate your phone to see the training calendar
There are currently no ISO 27001 Foundation courses on the calendar.
Would you like a Foundation Training in your area?