ISO 27001 Foundation

About The Course

ISO 27001 Foundation

ISO 27001 Foundation, a two-day course designed to engage the participants in learning about the best practices for implementing and managing an Information Security Management System (ISMS). This course also involves the best practices for implementing the information security controls based on ISO 27002. This training helps participants understand the correlation between ISO 27001/ISO 27002 and ISO 27003 (Guidelines for the implementation of an ISMS), ISO 27004 (Measurement of information security) and ISO 27005 (Risk Management in Information Security).

Day 1
Introduction to Information Security Management System (ISMS) concepts as required by ISO 27001
  • Introduction to the ISO 27000 standards family
  • Introduction to management systems and the process approach
  • General requirements: presentation of the clauses 4 to 8 of ISO 27001
  • Implementation phases of the ISO 27001 framework
  • Continual improvement of Information Security
Day 2
Implementing controls in information security according to ISO 27002 and Certification Exam
  • Principles and design of information security controls
  • Documentation of a information security control environment
  • Monitoring and reviewing the information security controls
  • Security controls based on ISO 27002 best practices


Who Should Attend?
  • IT Professionals wanting to gain a comprehensive knowledge of the main processes of an Information Security Management System (ISMS)
    • Staff involved in the implementation of the ISO 27001 standard
      • Expert advisors in IT
        • CxO and senior managers responsible for the IT governance of an enterprise and the management of its risks
          • Auditors
Learning objectives
  • To understand the fundamentals of information security
  • To knowing the interrelationships between ISO 27001 and the other information security standards (ISO 27002, ISO 27003, ISO 27004, and ISO 27005…)
  • To know the key components of an Information Security Management System (ISMS) in accordance with ISO 27001
  • To introduce the concepts, approaches, standards, methods and techniques allowing to effectively manage an ISMS
  • To understand the relationship between an Information Security Management System, including risk management, controls and compliance with the requirements of different stakeholders of the organization
  • To understand the stages of the ISO27001 certification process


Learning Methods

On-site Training

On-site training will require you to travel to the city the training is held in and may require accommodations. It gives you the advantage to be in the class with other participants and ask questions as needed as well as seek the advice of the trainer when you require help in understanding the topic. You will also be able to take the exam after finishing the training classes which is included in the cost.

Self Study

Self-Study is an excellent opportunity for those that don’t have the time to travel and can work on their own. Once we have received your request and payment, you will receive an email with instructions on how to access your training material via PECB’s KATE application. If you prefer to get a printed book shipped to you, contact us and we can arrange that for an additional cost. When you are ready, you will receive a voucher for the exam and instructions on how to set-up the online exam. Contact us with any questions.

News and Articles

Latest News View All