Master the implementation and management of Information Security Management Systems (ISMS) based on ISO/IEC 27001
Information security threats and attacks increase and improve constantly. The best form of defense against them is the proper implementation and management of information security controls and best practices. Information security is also a key expectation and requirement of customers, legislators, and other interested parties.
This training course is designed to prepare participants in implementing an information security management system (ISMS) based on ISO/IEC 27001. It aims to provide a comprehensive understanding of the best practices of an ISMS and a framework for its continual management and improvement.
After attending the training course, you can take the exam. If you successfully pass it, you can apply for a “PECB Certified ISO/ IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.
Course agenda
Day 1 Introduction to ISO/IEC 27001 and initiation of an ISMS
- Training course objectives and structure
- Standards and regulatory frameworks
- Information Security Management System (ISMS)
- Fundamental information security concepts and principles
- Initiation of the ISMS implementation h Understanding the organization and its context
- ISMS scope
Day 2 Planning the implementation of an ISMS
- Leadership and project approval
- Organizational structure h Analysis of the existing system
- Information security policy
- Risk management
- Statement of Applicability
Day 3 Implementation of an ISMS
- Documented information management
- Selection and design of controls
- Implementation of controls
- Trends and technologies
- Communication
- Competence and awareness
- Security operations management
Day 4 ISMS monitoring, continual improvement, and preparation for the certification audit
- Monitoring, measurement, analysis, and evaluation
- Internal audit
- Management review
- Treatment of nonconformities
- Continual improvement
- Preparing for the certification audit
- Certification process and closing of the training course
Day 5 Certification Exam
Learning Objectives
- Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
- Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
- Understand the operation of an information security management system and its processes based on ISO/IEC 27001
- Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organization
- Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS
Examination:
The “PECB Certified ISO/IEC 27001 Lead Implementer” exam meets the requirements of the PECB Examination and Certification Program (ECP). It covers the following competency domains:
Domain 1: Fundamental principles and concepts of an information security management system (ISMS)
Domain 2: Information security management system (ISMS)
Domain 3: Planning an ISMS implementation based on ISO/IEC 27001
Domain 4: Implementing an ISMS based on ISO/IEC 27001
Domain 5: Monitoring and measurement of an ISMS based on ISO/IEC 27001
Domain 6: Continual improvement of an ISMS based on ISO/IEC 27001
Domain 7: Preparing for an ISMS certification audit
For specific information about exam type, languages available, and other details, please visit the List of PECB Exams and the Examination Rules and Policies.
Certification:
After successfully passing the exam, you can apply for one of the credentials shown below. You will receive the certificate once you comply with all the requirements related to the selected credential.
For more information about ISO/IEC 27001 certifications and the PECB certification process, please refer to the Certification Rules and Policies.
| Credential | Exam | Professional experience | BCMS project experience | Other requirements |
|---|---|---|---|---|
| PECB Certified ISO/IEC 27001 Provisional Implementer |
PECB Certified ISO/IEC 27001 Lead Implementer exam or equivalent |
None | None | Signing the PECB Code of Ethics |
| PECB Certified ISO/IEC 27001 Implementer |
PECB Certified ISO/IEC 27001 Lead Implementer exam or equivalent |
Two years: One year of work experience in BC Security Management |
200 hours | Signing the PECB Code of Ethics |
| PECB Certified ISO/IEC 27001 Lead Implementer |
PECB Certified ISO/IEC 27001 Lead Implementer exam or equivalent |
Five years: Two years of work experience in Information Security Management |
300 hours | Signing the PECB Code of Ethics |
| PECB Certified ISO/IEC 27001 Senior Lead Implementer |
PECB Certified ISO/IEC 27001 Lead Implementer exam or equivalent |
Ten years: Seven years of work experience in Information Security Management |
1,000 hours | Signing the PECB Code of Ethics |
Note: PECB Certified individuals who possess the Lead Implementer and Lead Auditor credentials are qualified for the respective PECB Master Credential, credential, given that they have taken four additional Foundation exams which are related to this scheme. For more detailed information about the Foundation exams and the overall Master credential requirements, please visit: https://pecb.com/en/master-credentials.
General Information
- Certification fees are included on the exam price
- Participants will be provided with the training material containing over 450 pages of explanatory information and practical examples.
- An Attendance Record worth 31 CPD (Continuing Professional Development) credits will be issued to participants who have attended the training course.
- In case candidates fail the exam, they can retake the exam within 12 months following the initial exam for free.
Target Audience?
- Project managers and consultants involved in and concerned with the implementation of an ISMS
- Expert advisors seeking to master the implementation of an ISMS
- Individuals responsible for ensuring conformity to information security requirements within an organization
- Members of an ISMS implementation team
| Date | Duration | Location |
|---|---|---|
| 10 days (3hrs/day) | Online |
