ISO/IEC 27001 Lead Implementer 5-Day Training (31 Hours) - PECB exam included (1 retake included)

Learning Objectives

Information security threats and attacks increase and improve constantly. The best form of defense against them is the proper implementation and management of information security controls and best practices. Information security is also a key expectation and requirement of customers, legislators, and other interested parties.

This 5-day  training course is designed to prepare participants in implementing an information security management system (ISMS) based on ISO/IEC 27001. It aims to provide a comprehensive understanding of the best practices of an ISMS and a framework for its continual management and improvement.

By the end of this training course, the participants will be able to:

• Master ISMS Fundamentals: Gain a solid understanding of the core concepts and practices underpinning an Information Security Management System (ISMS) as outlined in ISO/IEC 27001, preparing you to build and enhance your organization's information security framework.

• Interpret with Insight: Develop the skill to interpret and apply the ISO/IEC 27001 standards from an implementer's viewpoint, turning guidelines into actionable strategies for your organization.

• Strategic Implementation: Learn to strategically initiate and plan the deployment of an ISMS, leveraging PECB’s proven IMS2 Methodology and industry best practices to ensure a seamless integration.

• Sustain and Improve: Equip yourself with the knowledge to help an organization not just operate and maintain but continuously refine and elevate their ISMS, fostering a culture of continuous improvement.

• Audit Preparation Mastery: Prepare your organization with the confidence and readiness for a third-party certification audit, ensuring a smooth process and successful outcome.

Course Agenda

• Day 1: Introduction to ISO/IEC 27001 and initiation of an ISMS
  • Training course objectives and structure
  • Standards and regulatory framework
  • Information Security Management System (ISMS)
  • Fundamental information security concepts and principles
  • Initiation of the ISMS implementation
  • Understanding the organization and its context
  • ISMS scope

• Day 2: Planning the implementation of an ISMS
  • Leadership and project approval
  • Organizational structure
  • Analysis of the existing system
  • Information security policy
  • Risk management
  • Statement of Applicability

• Day 3: Implementation of an ISMS
  • Documented information management
  • Selection and design of controls
  • Implementation of controls
  • Trends and technologies
  • Communication
  • Competence and awareness
  • Security operations management

• Day 4: ISMS monitoring, continual improvement, and preparation for the certification audit
  • Monitoring, measurement, analysis and evaluation
  • Internal audit
  • Management review
  • Treatment of non-conformities
  • Continual improvement
  • Preparing for the certification audit
  • Certification process explained and closing of the training course

• Day 5: Certification exam (9 to 12:30)

Prerequisites

The main requirement to participate in this training course is having a general knowledge of the ISMS concepts and ISO/IEC 27001.

Who Should Attend? 

About the Examination

The “PECB Certified ISO/IEC 27001 Lead Implementer” exam, included in the price of this course, meets the requirements of the PECB Examination and Certification Program (ECP). It covers the following competency domains:

• Domain 1: Fundamental principles and concepts of an information security management system (ISMS)
• Domain 2: Information security management system (ISMS)
• Domain 3: Planning an ISMS implementation based on ISO/IEC 27001
• Domain 4: Implementing an ISMS based on ISO/IEC 27001
• Domain 5: Monitoring and measurement of an ISMS based on ISO/IEC 27001
• Domain 6: Continual improvement of an ISMS based on ISO/IEC 27001
• Domain 7: Preparing for an ISMS certification audit

After attending the training course, you can take the exam on the 5th training day. If you successfully pass it, you can apply for a “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.

Exam format:

• Open book exam
• Multiple-choice format
• Available online or paper-based
• Duration: 3 hours
• Available in English or French

For specific information about exam type, qualifications and other details, please visit the List of PECB Exams and the Examination Rules and Policies.

Course Material

• Participants will be provided with the training course material containing over 450 pages of explanatory information, examples, best practices, exercises, and quizzes.
• An course attendance certificate of course completion worth 31 CPD (Continuing Professional Development) credits will be issued to the participants who have attended the training course.
• In case candidates fail the exam, they can retake it within 12 months following the initial attempt for free.