PECB ISO/IEC 27035 Lead Incident Manager
Training duration: 32 academic hours (4 days).
Target audience:
- Managers or consultants involved in the implementation of a Service Management System (SMS) in an organization
- Project managers or consultants wishing to master the Service Management System implementation process
- Individuals responsible for maintaining conformity to the requirements of the ISO/IEC 20000-1 standard
- Expert advisors seeking to master the implementation of a Service Management System
- Members of the SMS implementation team
Prerequisites:A fundamental understanding of the ISO/IEC 20000-1 standard, implementation principles and service management concepts.
Contents of this training
ISO/IEC 27035 Lead Incident Manager training enables you to acquire the necessary expertise to support an organization in implementing an Information Security Incident Management plan based on ISO/IEC 27035. During this training course, you will gain a comprehensive knowledge of a process model for designing and developing an organizational incident management plan. The compatibility of this training course with ISO/IEC 27035 also supports the ISO/IEC 27001 by providing guidance for Information Security Incident Management.
After mastering all the necessary concepts of Information Security Incident Management, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27035 Lead Incident Manager” credential. By holding a PECB Lead Incident Manager Certificate, you will be able to demonstrate that you have the practical knowledge and professional capabilities to support and lead a team in managing Information Security Incidents.
Trainer: PhD Andro Kull, certified ISO 27035 Lead Incident Manager
Specific course content will include
- Day 1 Introduction to Information Security Incident Management concepts as recommended by ISO/IEC 27035
- Course objectives and structure
- Standards and regulatory frameworks
- Information Security Incident Management
- ISO/IEC 27035 core processes
- Fundamental principles of Information Security
- Linkage to business continuity
- Legal and ethical issues
- Day 2 Designing and preparing an Information Security Incident Management plan
- Initiating an Information Security Incident Management Process
- Understanding the organization and clarifying the information security incident management objectives
- Plan and prepare
- Roles and functions
- Policies and procedures
- Day 3 Enacting the Incident Management process and handling Information Security incidents
- Communication planning
- First implementation steps
- Implementation of support items
- Detecting and reporting
- Assessment and decisions
- Responses
- Lessons learned
- Transition to operations
- Day 4 Monitoring and continual improvement of the Information Security Incident Management plan
- Further analysis
- Analysis of lessons learned
- Corrective actions
- Competence and evaluation of incident managers
- Closing the training
Intended outcome
Learning objectives:
- Master the concepts, approaches, methods, tools and techniques that enable an effective Information Security Incident Management according to ISO/IEC 27035
- Acknowledge the correlation between ISO/IEC 27035 and other standards and regulatory frameworks
- Acquire the expertise to support an organization to effectively implement, manage and maintain an Information Security Incident Response plan
- Acquire the competence to effectively advise organizations on the best practices of Information Security Incident Management
- Understand the importance of establishing well-structured procedures and policies for Incident Management processes
- Develop the expertise to manage an effective Incident Response Team
Price includes:
- training:
- certification exam;
- course materials;
- certification of attendance of the course.
Täienduskoolituse õppekavarühm: informatsiooni- ja kommunikatsioonitehnoloogia interdistsiplinaarne õppekavarühm
Trainer
-
Andro KullAndro Kull during his career, has worked in both sectors, public and private. In the previous years he has worked for the financial sector with regards to IT and information security, and for the energy sector with regards to IT risks, where security and continuity demands are very high. Kull started his career as IT specialist and IT manager, and has worked extensively as IT auditor and as IT risk manager for one of the largest company in Estonia. At the same time, he founded a small consulting company and managed projects related to IT risk assessment, the implementation of security measures, business continuity planning (BC), planning for recovery (DR), and crisis management mostly in public sector organizations.
The international environment is not new to Andro Kull, since he has participated in the European Central Bank internet payment security working group. Kull has been cooperating with the IT banking supervisors on an international level. Furthermore, he has organized one international conference in Tallinn. In addition, he has worked for European Union DG Connect as advisor connected with IT risk management recommendations development.
Andro Kull holds a PhD degree from the University of Tampere, concentrating on the IT oversight and compliance verification methodologies, and he currently is lecturing IT risk and information security management issues at the University of Tallinn.
Related Events
