ISO/IEC 27001:2022 Foundation Training

£1,370.00 ex VAT

ISO/IEC 27001 is a globally recognised standard that provides a framework for establishing, implementing, maintaining, and continually improving an information security management system. ISO 27001 sets out the criteria for assessing the risks to your information assets, implementing controls to manage those risks, and establishing a culture of information security within your organisation.

Dates for this training course are currently under review, please get in touch if you have a specific learning deadline in mind.


The ISO/IEC 27001 Foundation Training course is designed to provide you with a comprehensive understanding of the standard’s principles, concepts, and requirements. The course is delivered through interactive modules, practical examples, and real-world case studies to ensure an engaging learning experience.

Who is the ISO/IEC 27001 Foundation Training course suitable for?

This course teaches attendees the foundations of the ISO/IEC 27001 standard and how it operates within an organisation. It is aimed at those who are:

  • Supporting the implementation, operation or maintenance of an organisational ISMS
  • Need to have a foundational level of knowledge
  • Working at an organisation that has an ISMS
  • Preparing for the ISO/IEC Practitioner – Information Security Officer or Auditor qualifications

Admission Criteria

There are no specific entry requirements for the ISO/IEC 27001 Foundation training course, however candidates need to have a fundamental understanding of Information Systems and be familiar with the challenges associated with security control tasks.

ISO/IEC 27001 Foundation Overview

  • This training course covers:
  • The scope and purpose of ISO/IEC 27001 and how it can be used
  • The key terms and definitions used in the ISO/IEC 27000 series
  • The fundamental requirements for an ISMS in ISO/IEC 27001 and the need for continual improvement
  • The processes, their objectives and high-level requirements
  • Applicability and scope definition requirements
  • Use of controls to mitigate IS risks
  • The purpose of internal audits and external certification audits, their operation and the associated terminology
  • The relationship with best practices and with other related International Standards: ISO 9001 and ISO/IEC 2000

What can I expect to learn?

Upon completion of the course candidates will be able to:

  • Understand the fundamental concepts, principles, and requirements of ISO 27001.
  • Apply risk assessment methodologies to identify and assess information security risks.
  • Develop and implement controls to mitigate information security risks.
  • Establish an effective information security management system tailored to your organisation’s needs.
  • Understand the importance of asset management and develop strategies to protect your information assets.
  • Effectively respond to and recover from information security incidents.
  • Monitor, measure, analyse, and evaluate the performance of your information security management system.

ISO/IEC 27001 Foundation Exam Format

  • Multiple choice format
  • 50 questions per paper
  • 25 marks or more required to pass (out of 50 available) – 50%
  • 40 minutes
  • Closed book

Included with this course, you will get access to our high-quality training support resources including:

  • Training by a seasoned practitioner and qualified instructor
  • A course exam voucher
  • Access to our online flashcard application
  • One of our training support packs, including: a notebook and pen, a reusable coffee cup and a bag of co-branded coffee with the Contact Coffee Company

Principle Defence is an accredited ISO/IEC 27001 training provider.


There are no reviews yet.

Only logged in customers who have purchased this product may leave a review.

You may also like…

Book a Call

We have experts here to help you