PECB ISO/IEC 27002 Lead Manager

Master the implementation and management of information security controls based on ISO/IEC 27002.

Training duration: 32 ac h (4 days). Certification exam is held on day 5.

Target audience:

  • Managers or consultants seeking to enhance their knowledge regarding the implementation of information security controls in an ISMS based on ISO/IEC 27001.
  • Individuals responsible for maintaining information security, compliance, risk, or governance in an organization.
  • IT professionals or consultants seeking to enhance their knowledge in information security.
  • Members of an ISMS implementation or information security team.

Prerequisites: fundamental understanding of ISO/IEC 27002 and comprehensive knowledge of information security controls.

Contents of this training

The ISO/IEC 27002 Lead Manager training course enables participants to develop the necessary knowledge and skills for supporting an organization in effectively determining, implementing, and managing information security controls.
The training course provides information that will help participants interpret the ISO/IEC 27002 controls in the specific context of an organization.
The PECB ISO/IEC 27002 Lead Manager Certification demonstrates that you have acquired the necessary expertise for determining adequate information security controls needed to treat the risks identified by a risk assessment process.
The training course is followed by an exam. If you pass, you can apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. PECB Certified ISO/IEC 27002 Lead Manager.
After completing this course, you can sit for the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential.  A PECB Lead Manager Certification, proves that you have mastered the principles and techniques for the implementation and management of Information Security Controls based on ISO/IEC 27002.

More information: PECB Certified ISO/IEC 27002 Lead Manager

Specific course content will include

Course agenda
  • Day 1
  • Introduction to ISO/IEC 27002
    • Training course objectives and structure
    • Standards and regulatory frameworks
    • Fundamental concepts of informationsecurity, cybersecurity, and privacy
    • Information security managementsystem (ISMS) and ISO/IEC 27002
    • Analyzing the organization’s existing security architecture
    • Understanding information security risks
  • Day 2
  • Roles and responsibilities, assets, policies, and people controls
    • Selection and design of controls
    • Information security policies, procedures, and roles and responsibilities
    • Information assets and access controls
    • People control
  • Day 3
  • Physical controls and protection of information systems and networks
    • Physical controls
    • Operational security controls
    • Protection of information systems and network controls
  • Day 4
  • Information security incident management and testing and monitoring of information security controls based on ISO/IEC 27002
    • Supplier relationships and ICT supply chain
    • Information security incident management
    • Information security testing
    • Monitoring information security controls
    • Continual improvement
    • Closing of the training course
  • Day 5
  • Examination

Intended outcome

Learning objectives:

Upon successfully completing the training course, participants will be able to:

  • Explain the fundamental concepts of information security, cybersecurity, and privacy based on ISO/IEC 27002
  • Acknowledge the relationship between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
  • Interpret the ISO/IEC 27002 information security controls in the specific context of an organization
  • Support an organization in effectively determining, implementing, and managing information security controls based on ISO/IEC 27002
  • Explain the approaches and techniques used for the implementation and effective management of information security controls

Price includes:

  • training;
  • certification exam;
  • course materials;
  • certification of attendance the course.

Continuing Education Curriculum Group: Database and Network Design and Management (0612 ISCED)

Book Event

Attend training
Available seats: Unlimited
The Attend training ticket is sold out. You can try another ticket or another date.
Tags: , ,

Date

09.Jun 2025 - 12.Jun 2025

Time

4 days
09:00 - 16:30

Cost

1980€ +VAT

Location

Online Training
Categories
Register

Trainer

  • Andro Kull Andro Kull
    Andro Kull
    Andro Kull

    Andro Kull during his career, has worked in both sectors, public and private. In the previous years he has worked for the financial sector with regards to IT and information security, and for the energy sector with regards to IT risks, where security and continuity demands are very high. Kull started his career as IT specialist and IT manager, and has worked extensively as IT auditor and as IT risk manager for one of the largest company in Estonia. At the same time, he founded a small consulting company and managed projects related to IT risk assessment, the implementation of security measures, business continuity planning (BC), planning for recovery (DR), and crisis management mostly in public sector organizations.

    The international environment is not new to Andro Kull, since he has participated in the European Central Bank internet payment security working group. Kull has been cooperating with the IT banking supervisors on an international level. Furthermore, he has organized one international conference in Tallinn. In addition, he has worked for European Union DG Connect as advisor connected with IT risk management recommendations development.

    Andro Kull holds a PhD degree from the University of Tampere, concentrating on the IT oversight and compliance verification methodologies, and he currently is lecturing IT risk and information security management issues at the University of Tallinn.

  • PECB Official Trainer
    PECB Official Trainer

All Occurrences

Related Events