ISO/IEC 27001 Foundation Certification (Information Security) - eLearning (exam included)

750,00 EUR

  • 15 hours
eLearning

ISO/IEC 27001 (ISO 27001) is an international standard for Information Security management. It provides a model to establish, implement, maintain and continually improve a risk-managed Information Security Management System (ISMS). The standard forms the basis for effective management of sensitive, confidential information and for the application of information security controls. An organization that conforms to the ISO/IEC 27001 standard possesses clear, objective proof of its commitment to continued improvement of control over its sensitive and confidential information. The ISO/IEC 27001 Foundation course is the first step towards qualifying for the ISO/IEC 27001 standard on data security.

What is ISO/IEC 27001 for?

ISO/IEC 27001 contains requirements for organizations that want to establish, implement, maintain and continuously improve an information security management system. This framework serves as a guideline for continuously reviewing the security of your information, which will exemplify reliability and add value to your organization's services.

ISO/IEC 27001 provides reassurance to sponsors, shareholders and customers that the organization has expert control over its risk management and data security. Due to the diversity of different organizations’ information assets – the ISO/IEC 27001 standard is adaptable according to an organization’s requirements. The design and implementation of the ISMS is tailored to the organization’s objectives, information assets, operational processes, governing legal requirements and regulatory security requirements.

Why

is information security important?

ISO/IEC 27001 helps you understand the practical methods involved in implementing an information security management system that preserves the confidentiality, integrity and availability of information by applying a risk management process. By implementing an information security management system that meets all the requirements of ISO/IEC 27001, your organization can assess and manage the information security risks it faces.

ISO/IEC 27001 certified individuals will demonstrate that they possess the necessary expertise to support organizations to implement information security policies and procedures that are tailored to the organization's needs and promote continuous improvement of the management system and the organization's operations.

In addition, you will be able to demonstrate that you have the skills required to support the process of integrating the information security management system into the organization's processes and ensure that the intended results are achieved.

Why work with information security?

In recent times, we have all seen examples of serious mistakes in both private companies and public enterprises. Mistakes that caused sensitive information to be leaked to the public - or end up in the wrong hands. Depending on the content of the information, this can have serious consequences, both for individuals and businesses. In the worst case, sensitive data in the wrong way can pose a threat to the country's security by the information being destroyed, distorted or exploited.

ISO 27001 is one of the world's fastest growing management standards, with certifications growing at an annual rate of 30%.

Course timeline

Hero
  1. Introduction, background and terminology

    Lesson 01

  2. Key publications that compose the family of ISO/IEC 27001 standard

    Lesson 02

  3. Leadership and support of an Information Security Management System

    Lesson 03

  4. Planning and managing of an Information Security Management System

    Lesson 04

  5. Goals of control and controls for an Information Security Management System

    Lesson 05

  6. Acquiring ISO/IEC 27001 qualification

    Lesson 06

Learning Outcomes

The candidate will have achieved the knowledge of the following:

ISO/IEC 27001 Scope

The scope and purpose of ISO/IEC 27001 and how it can be used including key terms and definitions used in the ISO/IEC 27000 series.

Fundamental requirements

The fundamental requirements for an ISMS in ISO/IEC 27001 and the need for continual improvement. The processes, their objectives and high level requirements. Applicability and scope definition requirements.

Audits

The purpose of internal audits and external certification audits, their operation and the associated terminology. Use of controls to mitigate IS risks.

Best practices

The relationship with best practices and with other related International Standards: ISO 9001 and ISO/IEC 20000.

Key Features

Access

120 days of access eLearning platform (self-paced study) anytime

8 lessons

7 Hours of video

Duration

15 hours to complete the course

Exam

Official Exam included

Hero

Who Should Enroll in this Program?

IT professionals / practitioner

IT consultant

IT Auditors

IT system manager

Start course now

Exam Information

ISO/IEC 27001 Foundation

Take your exam when you are ready, when you have time and wherever you are.

The exam will be taken online, which gives you the convenient choice of writing the exam at home or in the office. What we need is a computer with internet for exam and webcam (ProctorU). Exams are included in this eLearning package. Very flexible.

Foundation Exam details:

  • Multiple choice format
  • 50 questions per paper
  • 25 marks or more required to pass (out of 50 available) – 50%
  • 40-minute duration
  • Closed book

More info

about ISO/IEC 27001

Today, organizations are far more vulnerable to security threats than they were in the past, due to the development of information systems and services. Information is an asset that, like other important assets, has value and thus must be protected. Through a proper mapping and classification of these assets and a systematic risk assessment of threats and vulnerabilities, your company can select appropriate controls to manage these risks and demonstrate that you preserve and respect confidentiality, privacy and accessibility rules.

Protecting business-critical or sensitive information is becoming increasingly important, not least as both companies and public services become increasingly digitized - and thus more sensitive to their own mistakes or attacks by hackers. The EU has also tightened the requirements to protect individuals' personal data through the General Data Protection Regulation (GDPR).

A certification according to the ISO 27001 management system ensures that you work in a systematic and efficient manner with information security, with the aim of identifying threats and preventing the risk of information falling into the wrong hands.

Some vital parts within this management system are:

  • Risk analysis and risk treatment
  • Classification and ownership of assets
  • Documentation and policies
  • Measurement of results
  • Follow-up
certification training

Need corporate solutions or LMS integration?

Didn't find the course or program which would work for your business? Need LMS integration? Write us, we will solve everything!

;