PECB Certified ISO/IEC 27001 Lead Implementer

The reasons why the PECB Certified ISO/IEC 27001 Lead Implementer training course is more desirable and valuable than the others is because it not only enables you to acquire the knowledge and competence in implementing an information security management system (ISMS) but also teaches you how to apply the skills required in practice. In addition to what the ISO/IEC 27001 standard tells you to do, this training course instead tells you how to do it, through various activities, exercises, case studies, multiple-choice standalone quizzes, and scenario-based quizzes. These will allow you to test your knowledge about the implementation process steps.

After attending the training course, you can take the exam. The exam type is unique because it is open-book and contains multiple-choice questions. It also contains standalone questions and scenario-based questions, which aim to simulate a real[1]life situations. If you successfully pass it, you can apply for a “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.

Certification is the formal recognition and proof of knowledge which carries an important weight when you are entering the labour market, or when you want to advance in your career. Due to the technological advancements and the complexity of cyberattacks, the demand for IT professionals continues to be in high demand. As such, the ISO /IEC 27001 certification has become the norm for best-practice in information security. By taking a certification you showcase a certain skill level which will display added value not only to your professional career but to your organization as well. This can help you stand out from the crowd and increase your earning potential.

• Project managers and consultants involved in and concerned with the implementation of an ISMS
• Expert advisors seeking to master the implementation of an ISMS
• Individuals responsible for ensuring conformity to information security requirements within an organization
• Members of an ISMS implementation team

Duration: 5 days

Day 1: Introduction to ISO/IEC 27001 and initiation of an ISMS

• Training course objectives and structure
• Standards and regulatory frameworks
• Information Security Management System (ISMS)
• Fundamental information security concepts and principles
• Initiation of the ISMS implementation
• Understanding the organization and its context
• ISMS scope

Day 2: Planning the implementation of an ISMS

• Leadership and project approval
• Organizational structure
• Analysis of the existing system
• Information security policy
• Risk management
• Statement of Applicability

Day 3: Implementation of an ISMS

• Documented information management
• Selection and design of controls
• Implementation of controls
• Trends and technologies
• Communication
• Competence and awareness
• Security operations management

Day 4: ISMS monitoring, continual improvement, and preparation for the certification audit

• Monitoring, measurement, analysis, and evaluation
• Internal audit
• Management review
• Treatment of nonconformities
• Continual improvement
• Preparing for the certification audit
• Certification process and closing of the training course

Day 5: Certification Exam

By the end of this training course, the participants will be able to:

• Explain the fundamental concepts and principles of an information security management system (ISMS) based on ISO/IEC 27001
• Interpret the ISO/IEC 27001 requirements for an ISMS from the perspective of an implementer
• Initiate and plan the implementation of an ISMS based on ISO/IEC 27001, by utilizing PECB’s IMS2 Methodology and other best practices
• Support an organization in operating, maintaining, and continually improving an ISMS based on ISO/IEC 27001
• Prepare an organization to undergo a third-party certification audit

Duration: 3 hours

The “PECB Certified ISO/IEC 27001 Lead Implementer” exam meets the requirements of the PECB Examination and Certification Program (ECP). It covers the following competency domains:

• Domain 1: Fundamental principles and concepts of an information security management system (ISMS)
• Domain 2: Information security management system (ISMS)
• Domain 3: Planning an ISMS implementation based on ISO/IEC 27001
• Domain 4: Implementing an ISMS based on ISO/IEC 27001
• Domain 5: Monitoring and measurement of an ISMS based on ISO/IEC 27001
• Domain 6: Continual improvement of an ISMS based on ISO/IEC 27001
• Domain 7: Preparing for an ISMS certification audit

For specific information about exam type, languages available, and other details, please visit the List of PECB Exams and the Examination Rules and Policies.

After successfully passing the exam, you can apply for one of the credentials shown below. You will receive the certificate once you comply with all the requirements related to the selected credential. For more information about ISO/IEC 27001 certifications and the PECB certification process, please refer to the Certification Rules and Policies.

Note: PECB certified individuals who possess Lead Implementer and Lead Auditor credentials are qualified for the respective ECB Master credential, given that they have taken four additional Foundation exams related to this scheme. More detailed information about the Foundation exams and the Master credential requirements can be found here.

• Certification and examination fees are included in the price of the training course
• Participants will be provided with the training course material containing over 450 pages of explanatory information, examples, best practices, exercises, and quizzes.
• An Attestation of Course Completion worth 31 CPD (Continuing Professional Development) credits will be issued to the participants who have attended the training course.
• In case candidates fail the exam, they can retake it within 12 months following the initial attempt for free