Mastering the Implementation and Management of Information Security Controls based on ISO/IEC 27002
This five-day intensive course enables participants to develop the necessary expertise and knowledge to support an organization in implementing and managing Information Security controls as specified in ISO/IEC 27002. Participants will also gain a thorough understanding of best practices used to appropriately govern Information Security controls across all the principles of ISO/IEC 27002.
To understand the implementation of Information Security controls by adhering to the framework and principles of ISO/IEC 27002
To gain a comprehensive understanding of the concepts, approaches, standards, methods and techniques required for the effective management of Information Security controls
To understand the relationship between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behavior
Preparing an acquisition and procurement process
Calculation of benefits using financially oriented and non-financially-oriented cost-benefit techniques
Drafting and implementing cost optimization strategies
=================
Day 1: Introduction to Information Security controls and ISO/IEC 27002</strong>
Course objective and structure
Standard and regulatory framework
Fundamental Principles of Information Security
Information Security Management System
Information security policies
Organization of information security
Day 2: Human resources, Asset Management and Access Control</strong>
Human resources security
Asset Management
Access Control
Day 3: Operations and communications security as required by ISO/IEC 27001</strong>
Cryptography
Physical and Environmental Security
Operations Security
Communications security
Day 4: Continuous improvement and preparation for certification</strong>
=================
The โPECB Certified ISO/IEC 27002 Lead Managerโ exam fully meets the requirements of the PECB Examination and Certification Program (ECP). The exam covers the following competence domains:
Domain 1: Fundamental principles and concepts for Information Security Controls
Domain 2: Information Security Control Best Practice based on ISO/IEC 27002
Domain 2.1: Guidance for Information Security Controls
Domain 2.2: Evaluate the need and applicability of each control
Domain 2.3: Direct the adherence to each control
Domain 2.4: Monitor all or key activities related to all the controls
Duration: 3 hours
For more information about the exam, refer to PECB section on ISO/IEC 27002 Lead Manager Exam
After successfully completing the exam, participants can apply for the credentials of PECB Certified ISO/IEC 27002 Provisional Manager, or PECB Certified ISO/IEC 27002 Manager depending on their level of experience
A certificate will be issued to the participants who successfully pass the exam and comply with all the other requirements related to the selected credential
For more information about ISO/IEC 27002 certifications and the PECB certification process, refer to the PECB section on ISO/IEC 27002 Lead Manager at https://pecb.com/certifications
Reviews
There are no reviews yet.