ISO-27001 Foundation – Information Security Management System (ISMS)

Information is a valuable asset that can make or break your business. When properly managed it allows you to operate with confidence. ISO/IEC 27001 Information Security Management gives you the freedom to grow, innovate and broaden your customer-base in the knowledge that all your confidential information will remain that way.

Internationally recognized ISO/IEC 27001 is an excellent framework which helps organizations manage and protect their information assets so that they remain safe and secure.

---

ISO-27001 Foundation Course Summary 

This course enables participants to learn about the best practices for implementing and managing an Information Security Management System (ISMS) as specified in ISO/IEC 27001:2013, as well as the best practices for implementing the information security controls of the eleven domains of the ISO 27002. This training also helps to understand how ISO/IEC 27001 and ISO 27002 relate with ISO 27003 (Guidelines for the implementation of an ISMS), ISO 27004 (Measurement of information security) and ISO 27005 (Risk Management in Information Security).

---

Course Key Learning: 

• Understand the implementation of an Information Security Management System in accordance with ISO/IEC 27001
• Understand the relationship between an Information Security Management System, including risk management, controls and compliance with the requirements of different stakeholders of the organization
• Know the concepts, approaches, standards, methods and techniques allowing to effectively manage an Information Security Management System
• Acquire the necessary Knowledge to contribute in implementing an Information Security Management System (ISMS) as specified in ISO/IEC 27001

---

Controls in ISO 27001

These are 114 controls in ISO 27001, organized in Annex-A of the document. These controls are classified into 14 control areas, as follows:

• Information Security Policies
• Organization for Information Security
• HR Security
• Asset Management
• Access Control
• Cryptography
• Physical & Environmental Security
• Operations Security
• Communications Security
• Systems Acquisitions, Development & Maintenance
• Supplier Relationships
• Information Security Incident Management
• Information Security Aspects of BCM
• Compliance

---

Course Participants 

• Members of an information security team
• IT Professionals wanting to gain a comprehensive knowledge of the main processes of an Information Security Management System (ISMS)
• Staff involved in the implementation of the ISO/IEC 27001 standard
• Technicians involved in operations related to an ISMS
• Information System Auditors / IT Auditors
• CxO and Senior Managers responsible for the IT governance of an enterprise and the management of its risks

---

Materials Provided

• Course reference manual containing copy of course slides, support documents, quizzes and answers
• Course Certificate
• Exam certificate on passing the ISO 27001 Foundation examination
• INTERNATIONAL STUDENT TRAINING FEE: 500 USD | 1,875 AED |1,875 SAR

---

ISO 27001 Certification Examination

A 60-minute certification exam is scheduled with PSEB. The exam is paper-pencil based.

PECB Certified ISO 27001 Foundation Exam

The “PECB Certified ISO/IEC 27001 Foundation” exam fully meets the requirements of the PECB Examination Certification Programme (ECP). The exam covers the following competence domains:

Domain 1: Fundamental principles and concepts of information security
Domain 2: Information Security Management System (ISMS)

---

• PECB Certification Exam FEE 500$

---

Eligibility for Examination

There is no prerequisite for this certification exam.

PECB Exam FAQ

---

---

Cyber Security | Information Security Courses

Offensive Security Certified Professional (OSCP) 

Cyber Security -CISSP 8 Domains Complete Courses
Certified Information Security Manager (CISM)
CISA: Certified Information Systems Auditor Exam

ISO 27001 Information Security Management Systems – ISMS
ISO 27017-Information Security Controls for Cloud Services
Ethical Hacking – CEH

 

---