certified iso 27002 manager - fifalde
TRANSCRIPT
CertifiedISO27002ManagerCourseDescription(v1.0)
FifaldeConsultingInc.+1-613-699-3005
©2017FifaldeConsultingInc.
CERTIFIEDISO27002MANAGER|2
InformationSecurityFoundationbasedonISO/IEC27002MasteringthefundamentalprinciplesandconceptsofaninformationsecuritycontrolbestpracticesbasedonISO27002.
ThistwodaysintensivecourseenablesparticipantstodeveloptheexpertiseneededtosupportanorganizationinimplementingandmanaginganInformationSecurityManagementSystem(ISMS)basedonISO27002.ParticipantswillalsobegivenathoroughgroundinginbestpracticesusedtoimplementinformationsecuritycontrolsfromallareasofISO/IEC27002.
ThistrainingisconsistentwiththeprojectmanagementpracticesestablishedinISO10006(QualityManagementSystems-GuidelinesforQualityManagementinProjects).
TargetGroupEveryoneintheorganizationwhoisprocessinginformation,specifically:
• ManagersorconsultantswantingtoimplementanInformationSecurityManagementSystem(ISMS)• ProjectmanagersorconsultantswantingtomastertheInformationSecurityManagementSystem
implementationprocess• Personsresponsiblefortheinformationsecurityorconformityinanorganization• Membersofinformationsecurityteams• Expertadvisorsininformationtechnology• TechnicalexpertswantingtoprepareforanInformationSecurityAuditfunction
PrerequisitesEntryrequirementsfortheexam:None.
ItisrecommendedthatcandidatestakeacourseinInformationSecurityFoundationbasedonISO/IEC27002anddeliveredbyanANSIaccreditedtrainer.
ExamThe“CertifiedISO/IEC27002Manager”examfullymeetstherequirementsoftheANSIandPECBExaminationandCertificationProgram.Theexamcoversthefollowingcompetencedomains:
Domain1:FundamentalprinciplesandconceptsinInformationSecurity
Domain2:InformationSecurityControlBestPracticebasedonISO/IEC27002
• The“CertifiedISO/IEC27002Manager”examisavailableindifferentlanguages(thecompletelistoflanguagescanbefoundintheexaminationapplicationform)
• Duration2hours
CERTIFIEDISO27002MANAGER|3
ObjectivesThecourseobjectivesare:
• TounderstandtheimplementationofanISMS• Togainacomprehensiveunderstandingoftheconcepts,approaches,standards,methodsandtechniques
relatedtoanISMS• Toacquirethenecessaryexpertisetosupportanorganizationimplementing,managingandmaintaining
anISMS• ToacquirethenecessaryexpertisetomanageateamimplementingISO/IEC27002
EducationalApproach• Thistrainingisbasedonboththeoryandpractice:
» Sessionsoflecturesillustratedwithexamplesbasedonrealcases» Practicalexercisesbasedoncasestudies» Reviewexercisestoassisttheexampreparation» Practicetestsimilartothecertificationexam
• Tobenefitfromthepracticalexercises,thenumberoftrainingparticipantsislimited
ContentDay1:IntroductiontoInformationSecurityManagementSystem(ISMS)conceptsasrequiredbyISO27002• UnderstandandexplaintheoperationsoftheISOorganizationandthedevelopmentofinformation
securitystandards• Abilitytoidentify,analyzeandevaluatetheinformationsecuritycompliancerequirementsforan
organization• Abilitytoexplainandillustratethemainconceptsininformationsecurityandinformationsecurity
riskmanagement• Abilitytodistinguishandexplainthedifferencebetweeninformationasset,dataandrecord• Understand,interpretandillustratetherelationshipbetweentheconceptsofasset,vulnerability,
threat,impactandcontrols
CERTIFIEDISO27002MANAGER|4
Day2:Securitycontrolsidentification,assessment,evaluationandanalysesaccordingtoISO27002andCertificationExam• Abilitytoidentify,understand,classifyandexplaintheclauses,securitycategoriesandcontrolsofISO27002• Abilitytodetailandillustratethesecuritycontrolsbestpracticesbyconcreteexamples• Abilitytocomparepossiblesolutionstoarealsecurityissueofanorganizationandidentify/analyzethe
strengthandweaknessofeachsolution• Abilitytoselectanddemonstratethebestsecuritycontrolsinordertoaddressinformationsecuritycontrol
objectivesstatedbytheorganization• Abilitytocreateandjustifyadetailedactionplantoimplementasecuritycontrolbylistingtheactivitiesrelated• Abilitytoanalyze,evaluateandvalidateactionplanstoimplementaspecificcontrol
Certification• Aftersuccessfullycompletingthe“ISO27002Manager”exam,participantscanapplyforthecredentialsof
CertifiedISO27002ProvisionalManagerorCertifiedISO27002Manager,dependingontheirlevelofexperience• Acertificatewillbeissuedtoparticipantswhosuccessfullypasstheexamandcomplywithalltheother
requirementsrelatedtotheselectedcredential
GeneralInformation• Examandcertificationfeesareincludedinthetrainingprice• Astudentmanualcontainingover200pagesofinformationandpracticalexampleswillbedistributed
toparticipants
Fifalde Consulting Inc. is a trusted independent advisor, helping organizationsmaximize efficiencies and increase value totheir IT services. We specialize in the delivery of Information Technology Service Management (ITSM) and InformationSecurity Management (ISM) consulting and training services, using best practices such as the Information TechnologyInfrastructureLibrary(ITIL®),TIPA®,TOGAF®,andstandardssuchasISO/IEC20000,27001,38500and others. Fifalde’steamincludes a network of the most accredited consultants and trainers in the IT industry.
FormoreinformationonwhatFifaldecanofferyourorganization,pleasevisitfifalde.com