ISO/IEC 27001 Practitioner - eLearning (including exam)
750,00 EUR
- 7 hours
The ISO/IEC 27001 Practitioner – Information Security Officer is a professional certification that demonstrates an individual's knowledge and competence in implementing, managing, and maintaining an Information Security Management System (ISMS). This certification is aimed at professionals who are responsible for ensuring the security of information within an organization and involves a deep understanding of the ISO/IEC 27001 standard's requirements and controls.
What is ISO/IEC 27001 for?
ISO/IEC 27001 contains requirements for organizations that want to establish, implement, maintain and continuously improve an information security management system. This framework serves as a guideline for continuously reviewing the security of your information, which will exemplify reliability and add value to your organization's services.
ISO/IEC 27001 provides reassurance to sponsors, shareholders and customers that the organization has expert control over its risk management and data security. Due to the diversity of different organizations’ information assets – the ISO/IEC 27001 standard is adaptable according to an organization’s requirements. The design and implementation of the ISMS is tailored to the organization’s objectives, information assets, operational processes, governing legal requirements and regulatory security requirements.
Course timeline
Introduction, background and terminology
Lesson 01
Design an Information Security Management System
Lesson 02
Planning and working an Information Security Management System
Lesson 03
The goal of controls and the security controls for Information Security
Lesson 04
Learning Outcomes
The candidate will have achieved the knowledge of the following:
Principles
Apply the principles of Information Security Management System policy and its information security scope, objectives, and processes within an organizational context
Risk management
Apply the principles of risk management including risk identification, analysis and evaluation and propose appropriate treatments and controls to reduce information security risk, support business objectives and improve information security
Audits
Analyse and evaluate deployed risk treatments and controls to assess their effectiveness and opportunities for continual improvement
Analyse
Analyse and evaluate the effectiveness of the ISMS through the use of internal audit and management review to continually improve the suitability, adequacy and effectiveness of the Information Security Management System
Evaluate
Understand, create, apply and evaluate the suitability, adequacy and effectiveness of documented information and records required by ISO/IEC 27001
Maintain
Identify and apply appropriate corrective actions to maintain Information Security Management System conformity with ISO/IEC 27001
Key Features
Language
Course and material are in English
Version
ISO/IEC 27001:2022 version
120 days of access
to eLearning platform (self-paced study 24/7)
5 modules
about 7 hours of video with exercises and solutions
Duration
7+ hours to complete the course
Material
Downloadable PDF documents with detailed content (slides, explanations) for each lesson
Exam Included
Official Exam included with 1 official exam simulation
Who Should Enroll in this Program?
Prerequisites
To take part to the ISO/IEC 27001 training course, the candidates must have one of the following certifications:
- ISO/IEC 27001 Foundation
- TÜV SÜD Foundation Certificate in ISMS according to ISO/IEC 27001
- ICO-CERT ISMS 27001 Foundation
IT professionals / practitioner
IT consultant
IT Auditors
IT system manager
Exam Information
APMG ISO/IEC 27001 Practitioner
Take your exam when you are ready, when you have time and wherever you are.
The exam will be taken online, which gives you the convenient choice of writing the exam at home or in the office. What we need is a computer with internet for exam and webcam (ProctorU). Exams are included in this eLearning package. Very flexible.
Practitioner Exam details:
- Objective Testing
- 4 questions per paper with 20 marks available per question
- 40 marks or more required to pass (out of 80 available) - 50%
- 2½ hour duration
- Open book exam
More info
about ISO/IEC 27001
Today, organizations are far more vulnerable to security threats than they were in the past, due to the development of information systems and services. Information is an asset that, like other important assets, has value and thus must be protected. Through a proper mapping and classification of these assets and a systematic risk assessment of threats and vulnerabilities, your company can select appropriate controls to manage these risks and demonstrate that you preserve and respect confidentiality, privacy and accessibility rules.
Protecting business-critical or sensitive information is becoming increasingly important, not least as both companies and public services become increasingly digitized - and thus more sensitive to their own mistakes or attacks by hackers. The EU has also tightened the requirements to protect individuals' personal data through the General Data Protection Regulation (GDPR).
A certification according to the ISO 27001 management system ensures that you work in a systematic and efficient manner with information security, with the aim of identifying threats and preventing the risk of information falling into the wrong hands.
Some vital parts within this management system are:
- Risk analysis and risk treatment
- Classification and ownership of assets
- Documentation and policies
- Measurement of results
- Follow-up
Frequently Asked Question
Need corporate solutions or LMS integration?
Didn't find the course or program which would work for your business? Need LMS integration? Write us, we will solve everything!