Class Details

Course Price: $2,730

Training promotions may be available, contact a training consultant at 240-667-7507 for more information!

Price Match Guarantee Phoenix TS

Course Includes:

  • 5-Day Training
  • Courseware 
  • Online Mentoring (6 Months) 
  • Pre and Post Assessments
  • Course Retake Guarantee 
  • Full breakfast with variety of bagels, fruits, yogurt, doughnuts and juice*
  • Tea, coffee, and soda available throughout the day*
  • Freshly baked cookies every afternoon* - *only at participating locations

Course Outline

Day 1: Introduction to Information Security Management System (ISMS) concepts as required by ISO/IEC 27001; initiating an ISMS

  • Introduction to Information Security Management System (ISMS) concepts as required by ISO/IEC 27001; initiating an ISMS
  • Presentation of the ISO 27000 family standards and regulatory framework
  • Fundamental principles of Information Security
  • Preliminary analysis and determining the level of maturity based on ISO 21827
  • Writing a business case and a project plan for the implementation of an ISMS

Day 2: Planning the implementation of an ISMS based on ISO/IEC 27001

  • Defining the scope of an ISMS
  • Drafting an ISMS and Information Security policies
  • Selection of the approach and methodology for risk assessment
  • Risk management: identification, analysis and treatment of risk (based on ISO 27005
  • Drafting the statement of applicability

Day 3: Implementing an ISMS based on ISO/IEC 27001

  • Implementation of a document management framework
  • Design of and implementation of controls
  • Information Security training, awareness and communication program
  • Information Security training, awareness and communication program
  • Operations management of an ISMS

Day 4: Control, monitor and measure an ISMS and the certification audit of the ISMS in accordance with ISO/IEC 27001

  • Monitoring the ISMS controls
  • Development of metrics, performance indicators and dashboards in accordance with ISO 27004
  • ISO/IEC 27001 internal audit
  • Management review of an ISMS
  • Implementation of a continual improvement program
  • Preparing for an ISO/IEC 27001 certification audit

Day 5: Certification Exam

Class Exam

Exam Domains:

  1. Fundamental principles and concepts in information security
    • Main Focus: To ensure that the ISO/IEC 27001 Lead Implementer candidate can understand, interpret and illustrate the main Information Security concepts related to an Information Security Management System (ISMS)
  2. Information Security Control Best Practice based on ISO/IEC 27002t
    • Main Focus: To ensure that the ISO/IEC 27001 Lead Implementer candidate can understand, interpret and provide guidance on how to implement and manage Information Security controls best practices based on ISO/IEC 27002
  3. Planning an ISMS based on ISO/IEC 27001
    • Main Focus: To ensure that the ISO 27001 Lead Implementer candidate can plan the implementation of an ISMS in preparation for an ISO 27001 certification
  4. Implementing an ISMS based on ISO/IEC 27001
    • Main Focus: To ensure that the ISO/IEC 27001 Lead Implementer candidate can implement the processes and security controls of an ISMS required for an ISO/IEC 27001 certification
  5. Performance evaluation, monitoring and measurement of an ISMS based on ISO/IEC 27001
    • Main Focus: To ensure that the ISO/IEC 27001 Lead Implementer candidate can evaluate, monitor and measure the performance of an ISMS in the context of an ISO/IEC 27001 certification
  6. Continuous improvement of an ISMS based on ISO/IEC 27001
    • Main Focus: To ensure that the ISO/IEC 27001 Lead Implementer candidate can provide guidance on the continuous improvement of an ISMS in the context of ISO/IEC 27001
  7. Preparation for an ISMS certification audit
    • Main Focus: To ensure that the ISO/IEC 27001 Lead Implementer candidate can prepare and assist an organization for the certification of an ISMS against the ISO/IEC 27001 standard