Certified credentials recognized by industries in all sectors and domains Help build knowledge and understanding of Information Security Concepts

2013 Information Security Policy Organization of Information Security Human Resources Security Asset Management Access Control Cryptography Physical and Environmental Safety Operations Security Communications Security System Acquisition, Development and Maintenance Supplier Relationships Information Security Incident Management Information Security aspects of Business Continuity Management Compliance 2022 Organizational People Physical Technological

ISO 27001 Certification – IT Security, Cybersecurity and Data Protection – ISMS

Implement and manage an ISMS
Gain expertise to audit and review security controls
Stay updated with industry best practices
Learn from the best with our custom learning modules

Exam Details

N/A

Number of Questions

60 Minutes

Exam Duration

Essay-type Questions

Exam Format

N/A

Passing Marks

Description

Globally recognized and well-known standard for Information Security Management Systems (ISMS) by the International Organization for Standardization (ISO) describes the requirements for establishing, implementing, maintaining, and continually improving an ISMS within the context of an organization.

The objective of ISO 27001 Certification is to help organizations protect their Critical Information Assets and comply with applicable legal and regulatory requirements using a top-down risk-based approach.

ISO 27001 was last updated in the year 2022 and the following are the changes from the last version 2013.

Domains – 14 domains (2013) -> 4 domains (2022)
Number of Controls – 114 controls (2013) -> 93 controls (2022)

Individual certification against ISO 27001 is of two types:

ISO 27001 Lead Auditor – Professionals looking for an ISMS auditor role that looks after the complete audit cycle for an organization
- Focused Areas:
  - Information Security Concepts and Principles
  - Information Security Management Systems
  - Audit Concepts and Principles
  - Audit Closure
ISO 27001 Lead Implementer – Professional looking for an ISMS implementer role in an organization that looks after the implementation of ISMS in an organization.
Organization-level certification against ISO 27001 can be obtained from any ISO-accredited institute
- Focused Areas:
  - Information Security Concepts and Principles
  - Information Security Management Systems
  - Implementation Planning and Execution
  - Monitoring, Continual Improvement and Preparation for a certification audit

Course Objective

Explain the fundamental concepts and principles of an information security management system (ISMS) based on ISO/IEC 27001
Interpret the ISO/IEC 27001 requirements for an ISMS from the perspective of an auditor
Evaluate the ISMS conformity to ISO/IEC 27001 requirements, in accordance with the fundamental audit concepts and principles
Plan, conduct, and close an ISO/IEC 27001 compliance audit, in accordance with ISO/IEC 17021-1 requirements, ISO 19011 guidelines, and other best practices of auditing
Manage an ISO/IEC 27001 audit program

Prerequisite

None as this is a basic ISMS certification.
Any professional working or wanting to switch careers in the field of Information Security can pursue this course.

Additional Information