ISO/IEC 27002 Lead Manager (PECB certified) + exam

This training course is intended for:

• Managers or consultants seeking to enhance their knowledge regarding the implementation of information security controls in an ISMS based on ISO/IEC 27001
• Individuals responsible for maintaining information security, compliance, risk, or governance in an organization
• IT professionals or consultants seeking to enhance their knowledge in information security
• Members of an ISMS implementation or information security team

Upon successfully completing the training course, participants will be able to:

• Explain the fundamental concepts of information security, cybersecurity, and privacy based on ISO/IEC 27002
• Acknowledge the relationship between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Interpret the ISO/IEC 27002 information security controls in the specific context of an organization
• Support an organization in effectively determining, implementing, and managing information security controls based on ISO/IEC 27002 
• Explain the approaches and techniques used for the implementation and effective management of information security controls

Day 1: Introduction to ISO/IEC 27002

Day 2: Information security roles and responsibilities, people controls, and physical controls

Day 3: Information security assets, access controls, and protection of information systems and networks

Day 4: Information security incident management and testing and monitoring of information security controls based on ISO/IEC 27002

Day 5: Certification exam

The main requirements for participating in this training course are having a fundamental understanding of ISO/IEC 27002 and comprehensive knowledge of information security controls.

• ISO27002F - ISO 27002 Foundation (PECB certified) + exam

Certification and examination fees are included in the price of the training course.

The information security activities should follow best implementation and management practices and include the following:

1. Drafting an ISMS implementation plan
2. Managing an information security implementation project
3. Implementing information security processes
4. Selecting information security processes
5. Implementing information security controls

For more information about ISO/IEC 27002 certifications and the PECB certification process, refer to the Certification Rules and Policies.

Educational Approach

• The training course integrates both theory and practice by guidance and practical examples for the implementation and management of information security controls.
• The training course contains essay-type exercises and multiple-choice quizzes, some of which are scenario-based.
• Participants are encouraged to communicate and discuss with each other while partaking in exercises and quizzes.
• The structure of quizzes is similar to that of the certification exam.