Home » ISO 27001 Information Security Practitioner
Training Topic: Information Security, Cybersecurity, Privacy
Training Framework/Standard: ISO 27001
- Duration 2 Days
- Virtual or Classroom
ISO/IEC 27001 is an international standard that provides the basis for effective management of confidential and sensitive information, and for the application of information security controls.
The standard enables organizations to demonstrate excellence and prove best practice in Information Security management. Conformance with the standard requires commitment to continually improve control of confidential and sensitive information, providing reassurance to sponsors, shareholders and customers alike.
The ISO/IEC 27001 Practitioner level course assesses the application of ISO/IEC 27001 knowledge to given business scenarios, enabling the candidate to demonstrate more detailed knowledge and capability.
Module 1: Introduction, context and objectives
- What is ISO / IEC 27001: 2013?
- History and state of the art
- Definitions
- What is an ISO / IEC 27001 Practitioner?
- Current state of the standard
Module 2: Preparation for Information Security Management System
- Leadership of top management
- Policy and objectives
- Integration with the daily operating mode
- Resources – Roles and Responsibilities
- Communication
- Management Reviews
- Documentation Required
Module 3: Security checks
- Controls
- Control Clauses
- Information Security Policies
- The organization for security
- Human resources
- Asset management
- Access control
- Cryptography
- Physical and Environmental Security
- Security of Operations
- Communications Security
- System Acquisition, Development and Maintenance
- Supplier relations
- Management of security incidents
- Security and Business Continuity
- Conformity
After completing the ISO/IEC 27001 Practitioner course, delegates will have the skills and knowledge to:
- Apply the principles of a ISMS policy on its perimeter, objectives and processes in the specific context of an organization,
- Apply risk management principles including identification, analysis and evaluation, and propose appropriate treatment actions and controls to reduce information security risks, support business objectives, and improve security Information,
- Analyse and evaluate risk management actions and controls to assess their effectiveness and opportunities for continuous improvement,
- Analyse and evaluate the effectiveness of the ISMS through internal audit and management reviews to continuously improve the relevance, adequacy and effectiveness of ISMS,
- Understand, create, implement and evaluate the adequacy, relevance and effectiveness of the documented information and records required by ISO 27001,
- Identify and implement appropriate corrective actions to maintain ISMS compliance with ISO/ IEC 27001.
The ISO/IEC 27001 Practitioner course is aimed mainly at professionals involved in the management of information security:
- Internal managers and staff working to implement, maintain and operate an organization’s Information Security Management System (ISMS)
- External consultants involved in the implementation, maintenance and operation of an information Security Management Framework
- Internal auditors requiring the applied knowledge of ISO 27001
The APMG ISO/IEC 27001 Practitioner exam consists of a four-question, each composed of 20 sub-questions and lasts 2 hours and 30 minutes (+40 extra minutes for non-English candidates).
Certification is obtained if the candidate obtains at least 40 correct answers (50%).
The use of the printed text of the standard is permitted during the examination.
Successful completion of the APMG ISO/IEC 27001 Foundation exam is a prerequisite for the ISO/IEC 27001 Practitioner course and certification.
Training Events
Date
Title
Color
Navigate Training
- Training Overview
- Anti-Bribery and Corruption
- Business Continuity and Lead Incident Management
- Business Relationship Management Professional
- Change Management
- Digital Transformation
- Governance and Compliance
- IT Governance
- Information Security, Cybersecurity, Privacy
- IT Service and Project Management
- Risk
- Supply Chain Management
- Project Management
- In-House and On-Site Training
Train Your Team In-house
Frequently Asked Questions
Use our FAQ to quickly find the answers to the most common questions asked by customers.
Why choose us?
We have over 22 years of experience in helping businesses and employees reach their potential with advanced skills and certifications, no matter what their industry or background experience.
All our services are bespoke, which means we offer the freedom and flexibility to create a solution specific to your industry & training needs.
We can use one or more of our services to deliver the outcome required to gain the maximum results for your business.
Specialist Consultancy Services
We offer a free introductory consultation service, to get an understanding of your organisation, your working environment & your training needs.
Our expertise & experience, combined with your working knowledge, delivers results that are practical & specific to your needs.
Training That Works
We have been involved in many differing, diverse & interesting projects & we have built relationships with organisations from varying industries & sizes. Our efficient, cost-effective and engaging training courses are designed for your company and team to improve the overall business performance and equip employees with up-to-date skills and knowledge.
Talk to us today, and let us help you develop your team with our bespoke training and consultancy services.
Do you only deliver training in Johannesburg?
No, we deliver training in all 9 provinces within South Africa. We have also delivery training in several countries such as Belgium, The Kingdom of Saudi Arabia, Togo, Zambia, Rwanda, Tanzania and Swaziland.
What are the minimum and the maximum number of candidates we can train in-house?
The minimum number of candidates required for in-house training is 6. With regard to the maximum number, this depends a little on the size of the training room you have available, but we normally say between 15 – 25.
Can you tailor the course to our specific requirements?
Yes, all of our courses can be tailored to your requirements. We will aim to refer to working examples within your business or industry.
Who are your clients?
Our clients come from companies and organisations of all sizes within the public and private sector. We work in most industries and have a proven track record of delivering high levels of customer satisfaction. See some of the names we have worked with here.