ISO 27002 LEAD MANAGER Training course

ISO/IEC 27002 Lead Manager

Mastering the Implementation and Management of Information Security Controls based on ISO/IEC 27002

Course Description

This five-day intensive course enables participants to develop the necessary expertise and knowledge to support an organization in implementing and managing Information Security controls as specified in ISO/IEC 27002. Participants will also gain a thorough understanding of best practices used to appropriately govern Information Security controls across all the principles of ISO/IEC 27002.

Who Should Attend

  • Managers or consultants wanting to implement an Information Security Management System (ISMS)
  • Project managers or consultants wanting to master the Information Security Management System implementation process
  • Persons responsible for the information security or conformity in an organization
  • Members of information security teams
  • Expert advisors in information technology
  • Technical experts wanting to prepare for an Information Security Audit function

Course Duration

Day 1: Introduction to Information Security controls and ISO/IEC 27002

  • Course objective and structure
  • Standard and regulatory framework
  • Fundamental Principles of Information Security
  • Information Security Management System
  • Information security policies
  • Organization of information security

Day 2: Human resources, Asset Management and Access Control

  • Human resources security
  • Asset Management
  • Access Control

Day 3: Operations and communications security as required by ISO/IEC 27001

  • Cryptography
  • Physical and Environmental Security
  • Operations Security
  • Communications security

Day 4: Continuous improvement and preparation for certification

  • System acquisition, development and maintenance
  • Supplier Relationships
  • Information security Incident Management
  • Information security aspects of business continuity management
  • Compliance
  • Golden Rules and Conclusion
  • Lead Manager Certification Scheme
  • Closing the Training

Day 5: Certification Exam


Knowledge in Information Security is preferred.

Who Should Attend

For more information about PECB Certified ISO/IEC 27001 certifications and the PECB certification process, refer to the section on ISO/IEC 27001 Lead Implementer.