The ISO/IEC 27001 Lead Implementer training course enables participants to acquire the knowledge necessary to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an information security management system (ISMS).
Why Should You Attend?
Information security threats and attacks increase and improve constantly. The best form of defense against them is the proper implementation and management of information security controls and best practices. Information security is also a key expectation and requirement of customers, legislators, and other interested parties.
This training course is designed to prepare participants in implementing an information security management system (ISMS) based on ISO/IEC 27001. It aims to provide a comprehensive understanding of the best practices of an ISMS and a framework for its continual management and improvement.
After attending the training course, you can take the exam. If you successfully pass it, you can apply for a “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.
Please Note:
Certification and examination fees are included in the price of the training course
This training course contains essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS.
The participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
The exercises are based on a case study.
The structure of the quizzes is similar to that of the certification examVirtual Learning
This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins.
COURSE OBJECTIVE:
After completing this course you should be able to:
• Explain the fundamental concepts and principles of an information security management system (ISMS) based on ISO/IEC 27001
• Interpret the ISO/IEC 27001 requirements for an ISMS from the perspective of an implementer
• Initiate and plan the implementation of an ISMS based on ISO/IEC 27001, by utilizing PECB's IMS2 Methodology and other best practices
• Support an organization in operating, maintaining, and continually improving an ISMS based on ISO/IEC 27001
• Prepare an organization to undergo a third-party certification audit
TARGET AUDIENCE:
Managers or consultants involved in and/or concerned with the implementation of an information security management system in an organization. Project managers, consultants, or expert advisers seeking to master the implementation of an information security management system; or individuals responsible to maintain conformity with the ISMS requirements within an organization. Members of the ISMS team
COURSE PREREQUISITES:
Attendees should have:
• A fundamental understanding of ISO/IEC 27001 and comprehensive knowledge of implementation principles.
COURSE CONTENT:
Day 1: Introduction to ISO/IEC 27001 and initiation of an ISMS implementation
• Training course objectives and structure
• Standards and regulatory frameworks
• Information security management system based on ISO/IEC 27001
• Fundamental concepts and principles of information security
• Initiation of the ISMS implementation
• Understanding the organization and its context
• ISMS scope
Day 2: Implementation plan of an ISMS
• Leadership and project approval
• Organizational structure
• Analysis of the existing system
• Information security policy
• Risk management
• Statement of Applicability
Day 3: Implementation of an ISMS
• Selection and design of controls
• Implementation of controls
• Management of documented information
• Trends and technologies
Day 4: ISMS monitoring, continual improvement, and preparation for the certification audit
• Monitoring, measurement, analysis, and evaluation
• Internal audit
• Management review
• Treatment of nonconformities
• Continual improvement
• Preparation for the certification audit
• Closing of the training course
FOLLOW ON COURSES:
Not available. Please contact.