Training: ISO/IEC 27001 Lead Implementer

Ref. ISO-27001LI

Download PDF

Duration:

4.5

days

Exam:

Included

Level:

Intermediate

Funding:

Temptraining

ITTA | Trainings | IT Pro | Audit and Cybersecurity | ISO/IEC 27001 Lead Implementer

Description

The five-day intensive training allows participants to acquire the necessary knowledge and develop the expertise to conduct a project to implement an information security management system meeting the requirements of the ISO/IEC standard. 27001.
The training consists of lectures illustrated with concrete cases and practical exercises based on a case study, carried out alone or in a group (role plays), taken from real missions, directly related to the preparation for the examination.

Participant profiles

Consultants wishing to prepare and support an organization for the implementation of an ISMS conforming to ISO/IEC 27001
Information System Security or Compliance Officers
Information technology expert advisers

Objectives

Acquire knowledge relating to the requirements of ISO/IEC 27001
Understand the relationship between the information security management system, risk management, measures, and the different stakeholders
Acquire through a case study the skills necessary to define and implement an Information Security Management System in accordance with ISO/IEC 27001
Obtain the ISO/IEC 27001 Lead Implementer certification

Prerequisites

Security of information systems and risk analysis
ISO/IEC 27001 and ISO/IEC 27002 are recommended

Course content

Module 1: Introduction to the concept of Information Security Management System (ISMS) as defined by ISO 27001

Introduction to management systems and process approach
Presentation of ISO 27001, ISO 27002 and ISO 27003 standards, as well as the normative, legal and regulatory framework
Fundamental principles of information security
Preliminary analysis and determination of the level of maturity of an existing information security management system according to ISO 21827
Drafting of a feasibility study and a project plan for the implementation of an ISMS

Module 2: Planning the implementation of an ISMS based on ISO 27001

Definition of the WSIS perimeter (field of application)
Development of WSIS policy and objectives
Selection of risk assessment approach and method
Risk management: identification, analysis and treatment of risk (according to the provisions of ISO 27005)
Drafting of the Declaration of Applicability

Module 3: Setting up an ISMS based on ISO 27001

Establishment of a documentation management structure
Design of security measures and drafting of procedures
Implementation of security measures
Development of a training and awareness program, and communication about information security
Incident management (according to the provisions of ISO 27035)
Management of an ISMS operations

Module 4: Control, monitor, measure and improve an ISMS; WSIS certification audit

Control and monitor an ISMS
Development of metrics, performance indicators and dashboards in accordance with ISO 27004
ISO 27001 internal audit
WSIS Management Review
Implementation of a continuous improvement program
Preparation for the ISO 27001 certification audit

ISO/IEC 27001 certification process and exam

Certification process
ISO 27001 Lead Implementer certification exam

Documentation

Digital courseware included

Exam

This course prepares you to the ISO 27001 Lead Implementer exam included in the price of the training

To succeed, the participant must obtain a minimum of 70 points out of 100
He will be qualified as a “Provisional Implementer” and will have 3 years to request to be certified, according to his level of activity, “Implement ISO/IEC 27001” or “Lead Implement ISO/IEC 27001 »

Complementary courses

Temptraining funding

ITTA is a partner of Temptraining, the continuing education fund for temporary workers. This training fund can subsidize continuing education for anyone who works for an employer subject to the Collective Work Agreement (CCT) Rental of services.