Lifelong learning for working professionals
Certified ISO/IEC 27001 Practitioner

Certified ISO/IEC 27001 Practitioner

Course overview

This training – Certified ISO 27001 Practitioner – provides participants with the requirements and principles of ISO/IEC 27001 as well as an awareness of the issues and challenges involved in implementing an information security management system.

This hands-on course is designed to provide the participant with a solid understanding of information security management systems (ISM) according to ISO/IEC 27001:2022.

Participants receive a voucher for writing an independent APMG certification exam.

Course Objective

After the course, you can:

  • Describe in detail the requirements of ISO/IEC 27001:2022
  • Identify information assets, threats, vulnerabilities, and risks
  • Plan the ISMS implementation program
  • Prepare for ISO 27001 certification (Phases 1 and 2)
  • Apply best-practice methodology to auditing
  • Prepare, lead and report the results of an information security audit
  • Revise risk assessments, business continuity and continuous improvement
  • Identify anomalies and corrective actions
  • Maintain ISO 27001 certification including monitoring audits
  • Apply governance and the link between audit and risk management

Target Group

Security and IT professionals, people responsible for risk, audit, and compliance, or project managers responsible for ISO 27001 compliance programs.

Prerequisites

No special prior knowledge is required.

Certification

Participants receive a voucher to write an independent APMG certification exam based on the material covered in this ISO 27001 Practitioner course. Approved participants receive an electronic APMG certificate and a digital badge.

Trainer

This course is delivered in cooperation with QA.

More about the course

Day 1: Why certification, ISMS basics, definitions, ISO 27001, implementation of ISMS, information security policy, scope (Exercise 1), information assets (Exercise 2), risk assessments (Exercise 3).

Day 2: Risk measurement, control objectives (Exercise 4), overview of information security, Statement of Applicability (Exercise 5), countermeasures, governance, InfoSec roles (Exercise 6), ISMS homework.

Day 3: Audit of the ISMS, preparation for certification audits (Övn 7 internal audit), steps 1 and 2 of the certification, maintenance of certification, auditors, standards in audits, audit terms and Q&A.

Day 4: Audit principles, management of audit programmes (Övn 8), implementation of audits, reporting of observations (Övn 9), follow-up of audits, the link between audits and risk management, continuous improvement, awareness training, knowledge assessment.

Course overview

37900 kr

4 days

Basic

Can’t find a (suitable) date, but are interested in the course? Send in an expression of interest and we will do what we can to get an opportunity that suits.

Expression of interest

För samtliga utbildningar gäller våra
 Allmänna Villkor.

Company-adapted course

The course can be adapted from several perspectives:
  • Content and focus area
  • Scope of application
  • Structure

In collaboration with the course leader, we make sure that the course meets your wishes
Contact us for more information

Send an expression of interest for the training

Send an expression of interest for the training