ISO/IEC 27002 Manager

Target group

This training course is intended for:

• Managers involved in the implementation of an information security management system (ISMS) based on ISO/IEC 27001
• IT professionals and consultants seeking to enhance their knowledge in information security
• Members of an ISMS implementation or information security team
• Individuals responsible for information security in an organization

Course structure

By successfully completing this training course, you will be able to:

• Explain the fundamental concepts of information security, cybersecurity, and privacy based on ISO/IEC 27002
• Discuss the relationship between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Support an organization in effectively determining, implementing, and managing information security controls based on ISO/IEC 27002

Education Approach

• This training is based on both theory and best practices used in the implementation and management of information security controls.
• Participants are encouraged to communicate and discuss with each other while partaking in exercises and quizzes.
• The structure of quizzes is similar to that of the certification exam.

Course Agenda

Day 1: Introduction to ISO/IEC 27002

Day 2: Information assets, people controls, physical controls, and operational security controls

Day 3: Information security incident management and monitoring of information security controls and certification exam

Certification

The “PECB Certified ISO/IEC 27002 Manager” exam meets all the requirements of the PECB Examination and Certification Program (ECP). It covers the following competency domains:

Domain 1: Fundamental principles and concepts of information security, cybersecurity, and privacy

Domain 2: Information security controls based on ISO/IEC 27002

For specific information about exam type, languages available, and other details, please visit the List of PECB Exams and the Examination Rules and Policies.

After successfully completing the exam, you can apply for the credentials shown on the table below. You will receive a certificate once you comply with all the requirements related to the selected credential.

The information security activities should follow best implementation and management practices and include the following:

1. Drafting an ISMS implementation plan
2. Managing an information security implementation project
3. Implementing information security processes
4. Selecting and implementing information security controls

For more information about ISO/IEC 27002 certifications and the PECB Certification process, please refer to Certification Rules and Policies.

General Information

• Certification fees and examination fees are included in the price of the training course.
• Participants will be provided with training material containing over 350 pages of information and practical examples.
• An attestation of course completion worth 21 CPD (Continuing Professional Development) credits will be issued to the participants who have attended the training course.
• Candidates who have completed the training course but failed the exam are eligible to retake it once for free within a 12-month period from the initial date of the exam.