Home - Course Catalogue - Security > ISOLI-ISO 27001 ISMS Lead Implementer

Microsoft Administration Microsoft Development Cisco ITIL® VMware Cloud Computing Risk & Audit VMware vSphere & Cloud Based Services Business Analysis Project Management CompTIA Java and Programming Security COBIT TOGAF Storage Area Networking Business Skills for IT Novell SAP UNIX

60% Off SCCM 2012, Hyper-V, & SQL 2012 Training The Microsoft Virtualization Challenge Register Online & Save Up To 15% Instantly Volume Pricing - Corporate Training Volume Pricing - Individual Training 25% Off for Microsoft Partners Microsoft Software Assurance

Talk to an Educational Consultant and get the answers you need.

By Phone
Ottawa: 613-798-5353
Toronto: 416-284-2700
Toll Free: 866-635-5353

Ask your question online

ISOLI - ISO 27001 ISMS Lead Implementer

Summary

This five-day intensive course that includes exam on the final day enables the participants to develop an expertise to support an organization in implementing and managing an Information Security Management System as specified in ISO 27001:2005: risk management (based on ISO 27005), risk management plan, implementation, surveillance, re-examination and operation of an ISMS, continuous improvement of information security, management’s commitment, follow-up and review as well as an introduction to ISO 27001 audit certification.

In addition, the participant will be able to become proficient in the best practices in the implementation of information security control measures based on the eleven (11) ISO 27002 domains: security policy, organization of information security, asset management, human resources security, physical and environmental security, communications and operations management, access control, information systems acquisition, development and maintenance, information security incident management, business continuity management and compliance.

This training focused on practice falls in line with best practices in project management based on the Project Management Institute (PMI) and the International Project Management Association (IPMA) as well as the ISO 10006 standard, "Quality Control Project Management Guidelines." It is fully compatible with the future ISO 27003 standard (guidelines for the implementation of an ISMS) and ISO 27004 (ISMS measures).

Learning objectives:

Understanding the application of an information security management system in the ISO 2701:2005 context.
Understanding the relationship between the information security management system, including the management of risks and controls, and the various stakeholders.
Acquiring the expertise to support an organization in implementing, managing and maintaining an ISMS as specified ISO 27001
Acquiring the personal skills and knowledge necessary to advise an organization on the best practices in information security management

Who should participate?

Project manager or consultant wanting to support an organization in the implementation of an ISMS
ISO 27001 auditor who wants to master the ISMS implementation process
Person responsible for the information security or conformity in an organization
Information security team member
Expert advisor in information technology
Project manager or consultant wanting to support an organization in the implementation of an ISMS

Prerequisites:

ISMS Foundation training or a basic knowledge of ISO 27001 and ISO 27002 standards is recommended

Course details:

Day 1: Introduction to the management of an Information Security Management

System based on ISO 27001 and launching an ISMS
Introduction to management systems and the process approach
Introduction to ISO 27001, ISO 27002 and ISO 27005 standards
Fundamental principles in information security
Preliminary analysis
ISO 27001 management project

Day 2: Planning an ISMS based on ISO 27001

Implementation of the governance framework: information security roles and responsibilities, ISMS policies, perimeter definition, etc.
Risk management based on ISO 27005: risk identification, risk analysis and risk treatment
Drafting the statement of applicability

Day 3: Launching and implementing an ISMS based on ISO 27001

Implementing a documentation management framework
Designing security control measures
Implementing security control measures
Training, awareness and communication
Incident management based on ISO 18044
Operations management

Day 4: Control, Taking action and ISO 27001 certification audit

Control measures monitoring (records management)
Performance indicators of control measures (metrics and operating reports)
ISMS internal audit
ISMS senior management review
Continuous improvement
ISO 27001 certification audit

Day 5: Examination

Examination

Examination and Certification

The “ISO/IEC 27001:2005 Lead Implementer” exam is certified by the Professional Evaluation and Certification Board (PECB). See www.pecb.org.
The “ISO/IEC 27001:2005 Lead Implementer” exam is available in different languages (including English and French)
Duration of the exam: 3 hours
A certificate will be issued to participants who successfully complete the exam

General Information

An ISMS implementation toolkit as well as a student manual containing over 450 pages of information and practical examples will be distributed to participants
A 35 CPE (Continuing Professional Education) participation certificate will be issued to participants