Learn to apply the standard to enable the management of information security.
Demonstrate your ongoing commitment to exceptional IT Service Management. ISO/IEC 27001 (ISO 27001) is an international standard for Information Security management. It provides a model to establish, implement, maintain and continually improve a risk-managed Information Security Management System (ISMS).
We are APMG accredited trainers, get recognised with us.
Sapience Consulting shares APMG’s passion for professional learning and development and have met or exceeded a rigorous assessment of their standards to demonstrate our commitment to delivering exceptional service.
Introduction
Course duration: 2 days, 9am – 5pm
An instructor-led classroom training relevant for professionals who will play a leading role in the implementation of the Information Security Management System (ISMS) needed for compliance against the the requirements of the ISO27001:2022 standard.
This course is a two-day classroom training relevant for professionals who play a role in establishing the ISO/IEC 27000 standard. This course is designed for IT professionals, consultants who play a role in the ISO/IEC 27000 implementation or in providing support around ISO/IEC 27000 certification.
Practical examples and case studies are used to guide you through the implementation route and prepare you to conduct a ISO/IEC 27000 assessment or audit. At the end of the two-day classroom training the APMG certification exam can be taken. This training does not cover audit techniques or the issues involved in preparing an organisation for an audit.
- Introduction to and background of ISO/lEC 27000.
- The certification scheme.
- ISO/IEC 27000 Standards family overview
- ISO/IEC 27001 and Annex A in detail.
- The use and application of ISO/lEC 27000.
- The implementation of ISO/IEC 27000.
- Preparing for a formal audit.
- ISO/IEC 27000 scoping and applicability.
- Exam practice and preparations.
The purpose of the practitioner qualification is to confirm whether the candidate has achieved sufficient understanding of ISO/IEC 27001 and its application in a given situation.
On completion of this training course, delegates will be able to:
- Apply the principles of ISMS policy and its information security scope, objectives, and processes within an organisational context.
- Apply the principles of risk management including risk identification, analysis and evaluation and propose appropriate treatments and controls to reduce information security risk, support business objectives and improve information security.
- Analyse and evaluate deployed risk treatments and controls to assess their effectiveness and opportunities for continual improvement.
- Analyse and evaluate the effectiveness of the ISMS through the use of internal audit and management review to continually improve the suitability, adequacy and effectiveness of the ISMS.
- Understand, create, apply and evaluate the suitability, adequacy and effectiveness of documented information and records required by ISO/IEC 27001.
- Identify and apply appropriate corrective actions to maintain ISMS conformity with ISO/IEC 27001.
This qualification is aimed at those who are:
- Internal managers and personnel working to implement, maintain and operate an ISMS within an organisation
- External consultants supporting an organisation’s implementation, maintenance and operation of an ISMS.
- Internal auditors who are required to have an applied knowledge of the standard
Delegates who successfully completed the course and pass the exam will be recognised as “Practitioner – Information Security Officer” under the APMG certification scheme.
For those delegates who do not meet the requirements stipulated in pre-requisites stated above or fail the exam would be awarded a course attendance certificate only.
Exam Format
- Objective Testing
- 4 questions per paper with 20 marks available per question
- 40 marks or more required to pass (out of 80 available) – 50%
- 2½ hour duration
- Open book.
- APMG ISO/IEC 27001 Foundation certificate
- TÜV SÜD ISO27001 Foundation certificate
- ICO-CERT ISMS 27001 Foundation certificate.
Why Us?
Complimentary refresher
Participants can attend a complimentary refresher if they wish(1-year validity and subject to approval)
Post-training support
Should you have questions after the course, you may contact the trainer for assistance regarding course material
E-learning Portal Access
1 year access to our E-learning portal. Including: - E-books available for download - Official sample exam - Randomised quiz formulated by Sapience Trainers based on past examinations
Meet Your Trainer
Principal Consultant
Sapience Consulting
Senior Consultant
Sapience Consulting
Senior Consultant
Sapience Consulting
Senior Consultant
Sapience Consulting
Senior Consultant
Sapience Consulting
Consultant
Sapience Consulting