Contact our experts to estimate your project idea and make it a commercial reality. Get a Free Quote.
Description
ISO/IEC 27001 Lead Implementer training provides participants with the essential skills to support an organization in planning, implementing, managing, monitoring and maintaining an effective information security management system (ISMS).
Why take part in this training course?
In the face of ever-increasing threats and attacks on information security, it is crucial to adopt robust protection measures. Proper implementation of security practices is the best defense against these risks. Moreover, ensuring information security has become an imperative to meet the expectations of customers, regulators and other stakeholders.
This training course is specifically designed to prepare participants to establish an ISMS compliant with ISO/IEC 27001. It provides an in-depth understanding of ISMS best practice and a framework for its ongoing management.
At the end of the course, you will have the opportunity to take an exam. If successful, you will be awarded the title of “PECB Certified ISO/IEC 27001 Lead Implementer”, attesting to your expertise and ability to implement an ISMS that meets the requirements of ISO/IEC 27001.
Day 1: Introduction and Foundations
- Introduction to management systems and the process approach
- Introduction to ISO 27001:2022, ISO 27002:2013 and ISO 27003:2017
- Exploring the fundamentals of information security
- Preliminary analysis and maturity assessment of an existing information security management system, according to ISO 21827:2008
- Drawing up a business case and planning the implementation of an ISMS
Day 2: Definition and Implementation
- Defining the scope of an ISMS
- ISMS implementation and information security policy development
- Choice of approach and methodology for risk assessment
- Risk management: identification, analysis and treatment of risks, based on the recommendations of ISO 27005:2011
- Drafting the Declaration of Applicability (DoA)
Day 3: Document management and awareness-raising
- Setting up the document management framework
- Design of measures and drafting of procedures
- Implementation of established measures
- Development of an information security training, awareness and communication program
- Incident management, in compliance with ISO 27035:2016
- Administration of ISMS operations
Days 4 and 5: Monitoring, Audit and Continuous Improvement
- Controlling and monitoring the ISMS
- Development of measures, performance indicators and dashboards in accordance with ISO 27004:2016
- Internal ISMS audits
- In-depth review of ISMS management
- Implementation of a continuous improvement program
- Preparing for an ISO 27001 certification audit
Please note: The course material and the PECB ISO/IEC 27001 Lead Implementer exam are available in English and French.
This course is aimed at the following audiences:
- people working in business continuity management (risk managers, consultants, etc.);
- people wishing to master the implementation of an ISMS;
- people responsible for ISMS compliance;
- People who are part of an ISMS team.
The main prerequisite for taking part in this course is a general knowledge of ISMS and ISO/IEC 27001 concepts.
This course will help you :
- Gain a comprehensive understanding of the concepts, approaches, methods and techniques used to effectively implement and manage an ISMS.
- Understand the correlation between ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks
- Understand the operation of an information security management system and its processes based on ISO/IEC 27001
- Learn how to interpret and implement the requirements of ISO 27001 in the specific context of an organization.
- Acquire the knowledge needed to support an organization in the effective planning, implementation, management, monitoring and maintenance of an ISMS.
Training Details
- Reference : DOL-FISOLI01Training location : DoualaDate :Duration : 5 DaysPrice : FCFA990,000
Currency
We design, build and support digital products for clients who want to make a positive impact in their industry. Creative with technology, we develop great solutions to help our clients grow and especially by strengthening our relationships based on continuous improvement, maintenance, support and hosting services.