ISO/IEC 27001 Practitioner (Including Exam)
Type
Virtual
Classroom ILT
Skill Level
Available dates
Learning Path
Virtual
Duration
1 Day
TYPE
Virtual
Classroom ILT
LEARNING PATH
SKILL LEVEL
DURATION
AVAILABLE DATES
Choose date
R9 800,00
Price excluding VAT
Introduction
The ISO/IEC 27001 Practitioner provides delegates with the knowledge to apply the standard to enable management of information security.
Key elements covered in this course include Stakeholder Engagement, Risk Management, Compliance, Client Engagement, Cyber Security, IT Management, Information Management & Analysis.
Overview
ISO/IEC 27001 is an international standard for Information Security management. It provides a model to establish, implement, maintain and continually improve a risk-managed Information Security Management System (ISMS).
The standard forms the basis for effective management of sensitive, confidential information and for the application of information security controls.
An organization that conforms to the ISO/IEC 27001 standard possesses clear, objective proof of its commitment to the continued improvement of control over its sensitive and confidential information.
ISO/IEC 27001, therefore, provides reassurance to sponsors, shareholders and customers that the organization has expert control over its risk management and data security.
Due to the diversity of different organizations’ information assets – the ISO/IEC 27001 standard is adaptable according to an organization’s requirements.
The design and implementation of the ISMS is tailored to the organization’s objectives, information assets, operational processes, governing legal requirements and regulatory security requirements.
Audience profile
The ISO/IEC 27001 Practitioner course is aimed at those who are:
- Internal managers and personnel working to implement, maintain and operate an ISMS within an organization
- External consultants supporting an organization’s implementation, maintenance and operation of an ISMS
- Internal auditors who are required to have an applied knowledge of the standard
Pre-requisites
APMG ISO/IEC 27001 Foundation certificate.
Course objectives
What are the key things you will learn?
- Applying the principles of ISMS policy and its information security scope, objectives, and processes within an organizational context
- Applying the principles of risk management including risk identification, analysis and evaluation and propose appropriate treatments and controls to reduce information security risk, support business objectives and improve information security
- How to analyze and evaluate deployed risk treatments and controls to assess their effectiveness and opportunities for continual improvement
- How to analyze and evaluate the effectiveness of the ISMS through the use of internal audit and management review to continually improve the suitability, adequacy and effectiveness of the ISMS
- How to create, apply and evaluate the suitability, adequacy and effectiveness of documented information and records required by ISO/IEC 27001
- How to identify and apply appropriate corrective actions to maintain ISMS conformity with ISO/IEC 27001
Course content
Session 1: Introduction | |
|
|
|
|
Session 2: Preparation for the Information Security Management System | |
|
|
|
|
|
|
|
|
Session 3: Planning and Operating the ISMS | |
|
|
|
|
|
|
|
Session 4: Controls |
|
|
|
|
|
|
|
|
|
Associated certifications and exam
This course will prepare delegates to take the MC-27001PE: Practitioner Examination.
Successfully passing this exam will result in the attainment of the ISO/IEC 27001 Practitioner Certification.
Exam Format:
- Objective testing
- 4 questions per paper with 20 marks available per question
- Open Book
Duration:
2 hours and 30 minutes for all candidates using English as their first language.
Pass Score:
40 marks or more required to pass (out of 80 available) – 50%
On successful completion of this course, students will receive a Torque IT attendance certificate.
ISO/IEC 27001 Overview
ISO/IEC 27001 is an international standard for Information Security management and provides the basis for effective management of sensitive / confidential information as well as the implementation of information security controls.
Organizations can utilize the ISO/IEC 27001 standard to demonstrate their conformance to best practice and excellence in Information Security management. An organization that conforms to the ISO/IEC 27001 standard possesses clear, objective proof of its commitment to continued improvement and control over its sensitive and confidential information.
ISO/IEC 27001 therefore provides reassurance to sponsors, shareholders and customers that the organization has expert control over its risk management and data security.
Torque IT offers authorized ISO/IEC 27001 instructor-led training and certification solutions that will ensure that you get the most from your human capital investment and that both productivity and efficiency are maximized.
The standard can be integrated with other management system framework standards, such as the quality standard ISO 9001 and ISO/IEC 20000 for IT Service Management.
Torque IT strives to be the ISO/IEC 27001 Accredited Training Organisation (ATO) provider of choice to our clients across South Africa and Africa.
Torque IT’s ISO/IEC 27001 training courses will help you deliver smarter solutions both on-time and within budget. We provide Standard Best Practice training and certification for novice and experienced managers.
APMG International ISO/IEC 27001™is a trademark of The APM Group Limited. All rights reserved. The APMG International ISO/IEC 27001 and Swirl Device logo is a trademark of The APM Group Limited, used under permission of The APM Group Limited. All rights reserved.