Certified ISO 27001 Lead Implementer Training Course

This Course is Currently Available "Live Online" Only (On-site Training Class Availability is Currently Suspended)

Course Summary

The Certified ISO 27001 Lead Implementer course is a five-day information packed learning experience. It is designed to develop a level of competence to support the design, development, roll-out and maintenance of an organizational Information Security Management System based on the ISO 27001 standard. During this course, student will participate in a series of practical exercises leading to a capstone practical exam in the form of a presentation to a panel of distinguished local business and technology executives.


To develop a well-rounded understanding of the standard's expectations, we will be drawing upon best practices from ISO 27001, 27002, 27003, 27004, 27005, 27017, 27034, 27035, 55000 among others. This approach enables students to understand the requirements for the design, development, implementation and ongoing maintenance of an ISO 27001-based information security management system, as well as the expectations of ISO certification auditors.

Enrollment for our next Certified ISO 27001 Lead Implementer Course

scheduled for April 12 - 16, 2021 closes at 5:00 PM (US Eastern Time Zone) on April 2, 2021

The time remaining for registration is:

49
Days
23
Hours
49
Minutes
48
Seconds

Important to Notes:

1. Training seats are limited, and we do not maintain a waiting list for courses as they book up fast. As such, registration may be closed before the above time, when fully booked.

2. Registration closes at 5:00 PM on the Friday, 2 weeks before the first day of each course, to allow time for us to send electronic versions of course-ware and mandatory communications to each student. The final registration date for each course is posted on the respective course registration page.

Click To See Dates & Register On The Forum's Website

Who Should Take This Course?

  • Information Security professionals and managers involved in any aspect of the development, roll-out or operational maintenance of an Information Security Management System (ISMS) 
  • IT Managers and professionals, Project Managers, and consultants wanting to prepare and to support an organization in the implementation or maintenance of an Information Security Management System (ISMS)
  • Auditors who want to understand and be able to demonstrate competence in an Information Security Management System implementation
  • Consultants looking to understand and support clients implementing an information security management system
  • Corporate / industrial / physical security specialists looking to understand the dynamics of an information security program and their role in supporting it
  • Technical IT specialist wanting to prepare for an Information Security function or for an ISMS project management function
  • Data Privacy, compliance managers and specialists charged with the responsibility for information security conformity in an organization in a regulated or service industry

Help Me Understand How This Course Relates to Me

Select the role that best suite your situation

(links to case studies here coming soon)

Information Security
 IT Management  
         Auditor         
     PMO & Staff      
       IT Staff        
 Business Leaders  

Schedule, Registration, and Cost

For specific dates and locations, please visit the Event Calendar view, or our Scheduled Events page.

Registration for our training, can now only be done on the website of the Information Security Leadership Forum.

It is important to note, due to significant member discounts offered, all persons seeking to register for certification training must now first register as a member of the Forum (a $125 fee to save $2,495).

The registration fee of $2,495 (USD), is currently being waived, and students are only required to pay the 

$500 certification exam and application fees, upon registration.


NOTES: 

1. On-site Training Class Availability is Subject To - No Local Pandemic or Protest / Rioting Restrictions. Where Restrictions Are In Place, The Course will Revert to Live Online.

2. If an early registration discount has been offered for a course, but is no longer visible on the course registration page, then the offer has expired and is no longer available to redeem.

Click To See the Training Schedule & Register on the Forum's Website

Agenda

Day One - Introduction and Planning for an Information Security Management System (ISMS)

  • Course introduction
  • A primer on the ISO 27000 family of standards and guides
  • An ISO 27001 ISMS
  • Acclimating to the organization
  • Business Process Mapping
  • Performing an Asset Inventory to support a risk assessment
  • Defining ISMS Program Goals & Priorities
  • Defining the scope of the ISMS

Day Two - Planning for an ISMS and Risk Management

  • Build the Business Case for an ISMS
  • Understand perform the mandatory legal & regulatory review
  • Develop an ISMS Statement of Applicability
  • Fundamentals of a risk assessment
  • Perform a Gap and Impact Assessment, and prepare a mitigation plan
  • Developing an ISMS Program Charter
  • A practical approach to developing governance for your ISMS

Day Three - Develop and Implement ISMS

  • Develop an SMS Performance Management Program
  • Develop an ISMS Communications Program
  • Implement the Mitigation Plan Implementation
  • Operational Transfer and Acceptance of ISMS services

Day Four - Management Oversight, Auditing and Managing an ISMS based on ISO 27001

  • Familiarization with the ISO 27001 Annex A Control Objectives & Controls
  • Understanding the mandatory requirement for an independent security assessment
  • Develop an Internal Audit program to support an ISMS
  • The requirements for an ISMS Leadership Review, and continuous improvement
  • The ISMS certification process
  • Establishment and ongoing management of Information Security Incident Plan to satisfy ISO 27001 requirements

Day Five - Practical & Written Certification Exams

  • Morning: 3 hour written exam
  • Afternoon: Practical Exam - Formal Presentation of Business Case To Executive Panel

NOTES:

1. Both written and practical exams are mandatory, in order to meet the certification requirements set out by the Information Security Leadership Forum, this course's certifying body.

2. Formal business attire is mandatory for you practical exam. Please be sure to pack / dress appropirately. Men are required to wear a jacket and tie, and women the equivalent.

Learning Objectives

When designing our Certified ISO 27001 Lead Implementer Course, great care is taken to identify key areas the course must focus on in order to ensure student achieve the goals the course was setup to accomplish. These learning objectives are highlighted as follows:

Understand the application of an Information Security Program as prescribed by ISO 27001.

Master the concepts, approaches, standards, methods and techniques required for the effective management of an organizational Information Security Program

Familiarity with the various sub-programs under an Information Security Program, and their interrelationships to establish a holistic enterprise information security program.

Develop the expertise to lead an organization in the design, development, implementation, management and maintenance of an Information Security Program

Familiarity with the subject matter experts and stakeholders that need to be engaged, and how to apply their expertise to support an organization in the establishment of an Information Security Management System

Develop fundamental knowledge and skills required to manage a team that is implementing the ISO27001 standard

What You Get!

What each student will receive

  • a copy of all slides presented during the class
  • a certificate of completion awarding 35 Continuing Professional Development (CDP) units
  • A Student Information Package (SIP) with study tips and other helpful and insightful information for the course and exam
  • An exam and certification application voucher.
  • Add-on Option: Soon the Information Security Leadership Forum will be releasing an Official Study Guide for this course which will be available for purchase in the Forum's e-Book Store, upon release. This e-Book is not free,  nor part of the course package.

Certification Exam Information

What you need to know

  • There are two exams for this course, a practical and a written exam. Students are required to achieve a minimum passing grade in both in order to qualify for certification.
  • The written exam is completed within 3 hours on Friday morning, and is in a multiple choice format. The exam begins punctually at 9:00 AM and ends at 12:00 PM. As such, students must arrive no later than 8:30 AM, at which time the exam instructions will be read to the class, and students may ask any final questions. This exam is an open book exam.
  • The practical exam is completed Friday afternoon with a live presentation to a panel of guest executives (CISO, CIO, CFO, COO, CEO, etc.).
  • All students are required to sign a non-disclosure agreement prior to commencement of the exam, attesting they will not disclose or discuss anything related to either the practical or written exams with any other person(s).
  • Students must bring (1) a copy of their student registration, and (2) at least one state / provincial or federal government issued identification card, both of which must be presented upon entering the examination room. Entrance will not be permitted without both.

Special Notes

  • Registration closes at 5:00 PM on the Friday, 2 weeks before the first day of each course to allow time for us to send an electronic version of the course-ware and mandatory communications to each student. The final registration date for each course is posted on the respective registration page.
  • Students will receive a discount code for a free membership with the Information Security Leadership Forum. This code is only valid for use by the registered student. Students must register and setup an account at least one week prior to the beginning of your course as there may be pre course work that must be completed, as well as messages from your instructor.
  • Student are prohibited from recording (audio or video) any session(s), or portions of any session, no matter whether the student is attending a classroom-based or online version.
  • All student material for this course will be provided on or before the first day of training, by the course instructor via the Information Security Leadership Forum's Online Training Portal. All course material is copyright protected, and student are prohibited from making any unauthroized electronic or printed copies, or redistrubuting to any person or entity.
  • Student are required to sign a non-compete clause, stating they will not take this course and use the material to create a competing training offering, nor support or participate with any other entity to create and offer a similar commercial fee-based or free offering.
  • Students must bring with them or otherwise have readily accessible, a copy of their course registration with barcode (printed or electronic format), which will be used to take daily attendance on the course. Anyone failing to have this information will be refused access.
  • Students understand that they are individually required to comply with any and all government regulations and restrictions or those imposed by an event venue that are in place, or may be imposed within the jurisdiction where this training is scheduled to take place as it relates to non-resident visa, pandemic outbreaks, protests or other emergency situations.
  • CIMA, the Information Security Leadership Forum, affiliate training delivery partners, and venue organizations and their staff, shall not be responsible to provision or assist in the provisioning of any item to assist a student registered for training with us, to comply with any government imposed requirements. All students are required to plan for and bring with them or make arrangements for the provisioning of any and all items that may be required for such situations e.g. facial mask, evidence of virus testing, non-resident visa, etc.
  • Already ISO 27001 Implementer Certified? If you have an existing active certification with another recognized certification authority and would like to convert over to an ISLF certification, you may elect to challenge our exam for a free of $30 + $100 for your first year's certification maintenance fee.
  • Have the experience but no training, and want to challenge the exam? If you already meet the certification experience criteria and want to challenge the exam, we're happy to accommodate.  You can purchase an exam voucher and application fee and sit for an exam without taking the training. We strongly recommend, before taking this option, you purchase a copy of the course study guide and review it in detail prior to taking exam.
>