ISO 27001 ISMS Lead Implementer

Accredited by PECB
Mastering the implementation and management of an Information Security Management System (ISMS) based on ISO/IEC 27001

5 Days, Exam Included
31 CPDs
Download Brochure
Register Now
Free Exam Retake

Highlights

  • Experienced & accredited trainers
  • Accredited training material
  • Training & examination in 5 days
  • 31 CPDs
  • Excellent first attempt pass ratio
Upcoming Schedule
ISO 27001 ISMS Lead Implementer Dubai 19-23 Nov 2017 USD 2,500**
Register Now
Karachi 05-09 Dec 2017 PKR 75,000**
Islamabad 17-21 Apr 2018 PKR 95,000**
Contact us to schedule this session for your team at your preferred location and dates


**includes certification exam fee with one free exam retake option.
The International Standard ISO/IEC 27001:2013 has been prepared to provide requirements for establishing, implementing, maintaining and continually improving an information security management system. The adoption of an information security management system is a strategic decision for an organization. The establishment and implementation of an organization’s information security management system is influenced by the organization’s needs and objectives, security requirements, the organizational processes used and the size and structure of the organization. All of these influencing factors are expected to change over time.

The information security management system preserves the confidentiality, integrity and availability of information by applying a risk management process and gives confidence to interested parties that risks are adequately managed.

It is important that the information security management system is part of and integrated with the organization’s processes and overall management structure and that information security is considered in the design of processes, information systems, and controls. It is expected that an information security management system implementation will be scaled in accordance with the needs of the organization.

This International Standard can be used by internal and external parties to assess the organization's ability to meet the organization’s own information security requirements.

Controls in ISO 27001
These are 114 controls in ISO 27001, organized in Annex-A of the document. These controls are classified into 14 control areas, as follows:

  • Information Security Policies
  • Organization for Information Security
  • HR Security
  • Asset Management
  • Access Control
  • Cryptography
  • Physical & Environmental Security
  • Operations Security
  • Communications Security
  • Systems Acquisitions, Development & Maintenance
  • Supplier Relationships
  • Information Security Incident Management
  • Information Security Aspects of BCM
  • Compliance
Introduction
This five-day intensive course enables participants to develop the necessary expertise to support an organization in implementing and managing an Information Security Management System (ISMS) based on ISO/IEC 27001:2013. Participants will also gain a thorough understanding of best practices used to implement information security controls from all areas of ISO/IEC 27002. This training is consistent with the project management practices established in ISO 10006 (Quality Management Systems - Guidelines for Quality Management in Projects). This training is also fully compatible with ISO/IEC 27003 (Guidelines for the Implementation of an ISMS), ISO/IEC 27004 (Measurement of Information Security) and ISO/IEC 27005 (Risk Management in Information Security).

Learning Objectives
  • To understand the implementation of an ISMS in accordance with ISO/IEC 27001
  • To gain a comprehensive understanding of the concepts, approaches, standards, methods and techniques required for the effective management of an ISMS
  • To understand the relationship between the components of an ISMS, including risk management, controls and compliance with the requirements of stakeholders
  • To acquire the necessary expertise to support an organization in implementing, managing and maintaining an ISMS
  • To acquire the necessary expertise to manage a team implementing ISO/IEC 27001
  • To develop the knowledge and skills required to advise organizations on best practices in the management of information security.

Recommended Participants
  • Project managers or consultants wanting to prepare and to support an organization in the implementation of an Information Security Management System (ISMS)
  • ISO/IEC 27001 auditors who wish to fully understand the Information Security Management System implementation process
  • CxO and Senior Managers responsible for the IT governance of an enterprise and the management of its risks
  • CxO and Senior Managers responsible for the IT governance of an enterprise and the management of its risks
  • Members of an information security team
  • Expert advisors in information technology
  • Technical experts wanting to prepare for an Information security audit function

Prerequisites
PECB Certified ISO/IEC 27001 Foundation Certification or basic knowledge of ISO/IEC 27001 is recommended.

Course Format
This training is based on both theory and practice:

  • Sessions of lectures illustrated with examples based on real cases
  • Practical exercises based on a full case study including role playings and oral presentations
  • Review exercises to assist the exam preparation
  • Practice test similar to the certification exam.
Materials Provided
  • Course reference manual containing copy of course slides, support documents, quizzes and answers
  • Course Certificate
  • Exam certificate on passing the ISO 27001 ISMS Lead Implementer examination

CPDs Assigned
This course qualifies for Thirty One (31) CPDs

  • Day 1: Introduction to Information Security Management System (ISMS) concepts as required by ISO/IEC 27001; Initiating an ISMS
  • - Introduction to management systems and the process approach
    - Presentation of the standards ISO/IEC 27001, ISO 27002 and ISO 27003 and regulatory framework
    - Fundamental principles of Information Security
    - Preliminary analysis and establishment of the level of the maturity level of an existing information security management system based on ISO 21827
    - Writing a business case and a project plan for the implementation of an ISMS

  • Day 2: Planning the implementation of an ISMS based on ISO/IEC 27001
  • - Defining the scope of an ISMS
    - Development of an ISMS and information security policies
    - Selection of the approach and methodology for risk assessment
    - Risk management: identification, analysis and treatment of risk (drawing on guidance from ISO/IEC 27005
    - Drafting the Statement of Applicability

  • Day 3: Implementing an ISMS based on ISO/IEC 27001
  • - Implementation of a document management framework
    - Design of controls and writing procedures
    - Implementation of controls
    - Development of a training & awareness program and communicating about the information security
    - Incident management (based on guidance from ISO 27035)
    - Operations management of an ISMS

  • Day 4: Controlling, monitoring, measuring and improving an ISMS; certification audit of the ISMS
  • - Controlling and Monitoring the ISMS
    - Development of metrics, performance indicators and dashboards in accordance with ISO 27004
    - ISO/IEC 27001 internal Audit
    - Management review of an ISMS
    - Implementation of a continual improvement program
    - Preparing for an ISO/IEC 27001 certification audit

  • Day 5: Certification Exam

Certification Examination
A 3-hour certification exam is scheduled on the last day of the course. The exam is paper-pencil based.

Content of the exam
The “PECB Certified ISO/IEC 27001 Lead Implementer” exam fully meets the requirements of the PECB Examination Certification Programme (ECP). The exam covers the following competence domains:

  • Domain 1: Fundamental information security principles and concepts
  • Domain 2: Planning an ISMS based on PECB Certified ISO/IEC 27001
  • Domain 3: Implementing an ISMS based on PECB Certified ISO/IEC 27001
  • Domain 4: Information security control best practices, based on ISO 27002
  • Domain 5: Performance evaluation, monitoring and measurement of an ISMS based on PECB Certified ISO/IEC 27001
  • Domain 6: Continuous improvement of an ISMS based on PECB Certified ISOIEC 27001
  • Domain 7: Preparing for an ISMS certification audit
Eligibility for Examination
There is no prerequisite for this certification exam.
Why select Business Beam as your Training Provider?

01

Exam passing guarantee
Enjoy one FREE exam retake if you fail in the first attempt. (What’s this?)

02

Free lifetime revision
Refresh your concepts by re-attending our training session for FREE. (What’s this?)

03

Accredited Training Organization
Business Beam is an ATO and PECB Partner.

04

Accredited course material
The training material is accredited and approved.

05

Quality Training Material
You will receive 550-page comprehensive training manual.

06

Accredited trainers
Our trainers are experienced consultants and accredited trainers.

07

Excellent first attempt pass ratio
Business Beam maintains 90%+ first attempt pass ratio.

08

Excellent feedback:
92%+ of our overall customers rates us excellent or very good.

09

Experience tells all
500+ accredited courses to 7,000 professionals in classroom.

10

At your premises
This training is also available at your preferred premises and timings.
FREE Exam Retake

Business Beam offers one FREE exam retake option to its valuable training participants who don’t pass exam in the first attempt.

  • This offer is time limited, starting from 2015 and onwards.
  • This offer is valid for selected courses only, including ITIL Foundation & Intermediate Level, PRINCE2 Foundation, and ISO 27001, ISO 22301, ISO 20000, ISO 38500 & ISO 9001 related exams.
  • Free examination retake is subject to 100% advance payment of training and exam fee.
  • Free examination retake offer shall NOT be applicable in following conditions:
  • If candidate does not attend the training session up to 3 hours or more;
  • If candidate does not write the examination (first time) on the last day of training session;
  • In case of online examinations, Candidate fails because of laptop or desktop issues.
  • Exam retake must be availed within 6 months of the initial exam.
  • This offer can be availed only at the offices of Business Beam, at Dubai or Karachi.
  • Candidate must send written exam retake request to Business Beam at This email address is being protected from spambots. You need JavaScript enabled to view it., with electronic copy of training attendance certificate, first examination date and preferred retake dates. Business Beam will confirm the retake schedule.
  • This offer is non-transferable and cannot be redeemed for cash or credit.
  • The terms and conditions are subject to change without any prior notice.
×
FREE Lifetime Revisions

Business Beam offers FREE lifetime revisions to its valuable training participants, who want to refresh their concepts. Participants are welcome to attend training again for FREE.

  • This offer can only be availed by the participants who attends our training sessions in 2016 and onwards.
  • For revision, participants may join any of our pre-scheduled open-enrollment training session at any location worldwide. Updated training schedule is available at our website (www.businessbeam.com).
  • Participants are welcome do more than one revisions, as required.
  • Revision participant shall pay the training logistic expenses.
  • This offer shall not be applicable if the course version changes (e.g. PMP based on PMBOK v5 to v6).
  • Training attendance certificate shall not be issued to revising participants.
  • This offer is valid for training courses only; examinations of any kind are not part of this offer.
  • This offer subjects to the confirmation of training session, and the availability of space.
  • The terms and conditions are subject to change without any prior notice.
×
Suggested Links
Register Online
Register in open-enrollment training sessions online
Open-Enrollment Schedule
Open enrollment sessions in Karachi, Islamabad and Lahore
Training Catalogue
List of our internationally accredited courses
Information Security Consulting
Secure your key data and information
Business Continuity Consulting
Keep your business running in disasters
Accreditations
See our strategic global alliances, accreditations and partnerships
Get the latest news