Description

The ISO/IEC 27001 Practitioner – Information Security Officer’s course is designed to provide you with an understanding of the enhanced Information Security framework for managing information security risks, ensuring that organisations have robust controls in place to protect their data and helps organisations meet legal and regulatory requirements related to information security, such as the General Data Protection Regulation (GDPR) and industry-specific regulations.

Who is the ISO/IEC 27001 Practitioner Training course suitable for?

The ISO 27001 course is suitable for individuals who are responsible for information security management within their organisations:

• Those responsible for implementing, maintaining, and operating an ISMS within an organisation 
• Consultants who support organisations in implementing and maintaining an ISMS
• Internal Auditors who need to have an applied level of knowledge about ISO 27001 as it provides a deeper understanding of the standard, allowing auditors to assess an organisation’s information security controls effectively.

Admission Criteria

You will be required to hold a valid ISO/IEC 27001:2022 Foundation Certificate

ISO/IEC 27001 Practitioner Course Overview

• Key concepts and principles of information security management
• Understanding the ISO 27001 framework and requirements
• Establishing an information security policy and objectives
• Conducting a risk assessment and risk treatment
• Implementing information security controls
• Monitoring, measuring, and improving the ISMS
• Internal audits and management reviews
• Certification process and audit preparation

What can I expect to learn?

Upon completion of the course, successful candidates will be able to:

• Apply the principles of an ISMS policy and its information security scope, objectives, and processes within an organisational context
• Apply the principles of risk management including risk identification, analysis, and evaluation and propose appropriate treatment and control options to reduce information security risk, support business objectives, and improve information security
• Analyse and evaluate deployed risks treatment and control options to assess their effectiveness and opportunities for continual improvement
• Analyse and evaluate the effectiveness of an ISMS through the use of internal audit and management reviews to continually improve the suitability, adequacy, and effectiveness of the ISMS
• Create, apply, and evaluate the suitability, adequacy, and effectiveness of documented information records required by ISO/IEC 27001
• Identify and apply appropriate corrective actions to maintain ISMS conformity with ISO/IEC 27001

ISO/IEC 27001 Practitioner (Information Security Officer) Exam Format

• Objective testing 
• 4 questions per paper with 20 marks available per question 
• 40 marks or more required to pass (out of 80 available) – 50%
• 150 minutes 
• Open Book
• ISO/IEC 27000:2018
• ISO/IEC 27001:2022
• ISO/IEC 27002:2022
• ISO/IEC 27003:2017
• ISO/IEC 27005:2022

Included with this course, you will get access to our high-quality training support resources including:

• Training by a seasoned practitioner and qualified instructor
• A course exam voucher
• One of our training support packs, including: a notebook and pen, a reusable coffee cup and a bag of co-branded coffee with the Contact Coffee Company
•  Access to our online flashcard application
• Access to our online community of like-minded professionals for continued support

Principle Defence is an accredited ISO/IEC 27001 training provider.