logo

ISO 27001 Lead Implementer

Details:

Admission

• This certification applies to all information security professionals.
• Admission after interview.

Our objectives

• Know how to implement the ISO 27001 standard.
• Know which standards to apply.
• Know how to implement an ISMS.

Recommended prerequisites

• Trainees purchase the ISO27006 and ISO27004 standards
•Knowledge of networking, information systems architecture, security organization, risk analysis, and knowledge of other standards
•Reading the ISO27001 standard with a questionnaire before the training (questionnaire provided by ADACIS).

Mandatory prerequisites

• Trainees purchase the ISO27000, ISO27001, ISO27002 and ISO27005 standards.
• Bachelor's degree (BAC+2) or 2 years of professional experience in information security.
• IT skills.
• Requires internet access and a laptop with a camera for the remote exam.
• Requires installation on the trainee's computer of a connection platform such as Microsoft Teams or Zoom.

Who can take the exam?

• Chief Information Security Officers (CISOs).
• Specialized consultants wishing to master the implementation of an information security management system.
• Anyone responsible for maintaining compliance with ISMS requirements.

Knowledge validation

• All our courses include a multiple-choice test to validate the level of learning achieved.
• This training is certified by an external body.

Content:

01

Detailed presentation of the ISO 27001 standard

• The concept of an ISMS (Information Security Management System).
• The PDCA model (Plan-Do-Check-Act).
• The processes of an ISMS.
ㅤ• Management.
ㅤ• Steering.
ㅤ• Security measures management.
ㅤ• Information risk management.
ㅤ• Documentation management.
ㅤ• Skills management.
ㅤ• Indicators management.
ㅤ• Security incident management.
ㅤ• Internal audit.

02

Overview of complementary standards

03

ISO 27001 certification process

04

Information risk management process

05

ISO 27005 risk analysis

• Introduction to the ISO 27005 standard.
• Risk, threat, vulnerability.
• Risk management process: iterative aspects and PDCA.
• Establishing the context.
ㅤ• Risk management criteria.
ㅤ• Description of the environment and constraints.
• Risk assessment.
ㅤ• Risk identification: assets, threats, vulnerabilities, consequences…
ㅤ• Risk estimation.
ㅤ• Risk evaluation.
• Risk treatment.
ㅤ• Selecting security measures.
• Risk acceptance.
• Risk communication.
• Reviewing the risk management process and risk monitoring.
• Conclusion.

06

Security measures management process

07

Presentation of the ISO 27002 standard

• Different categories of security measures.
• Organizational measures.
• Technical measures.

08

The ISMS project

• Convincing management.
• Project stages.
• Stakeholders.

09

Indicators management process

10

Presentation of the ISO 27004 standard

• Principles.
• Compliance indicators.
• Effectiveness indicators.

11

Exam preparation

12

Exam designed, proctored and graded by an external body

Additional information

dots1

€2,500 excl. VAT / 40 hours of training
This training can be scheduled based on demand.

You can contact the training organization to learn more: formation@adacis.net or +33 5 47 33 51 79

Back to our training courses