PECB ISO/IEC 27002 Lead Manager (inglise keeles)
Master the implementation and management of information security controls based on ISO/IEC 27002.
Koolituse maht: 32 academic hours (4 days).
Sihtgrupp:
- Managers or consultants seeking to enhance their knowledge regarding the implementation of information security controls in an ISMS based on ISO/IEC 27001.
- Individuals responsible for maintaining information security, compliance, risk, or governance in an organization.
- IT professionals or consultants seeking to enhance their knowledge in information security.
- Members of an ISMS implementation or information security team.
Koolitusel osalemise eeldused: fundamental understanding of ISO/IEC 27002 and comprehensive knowledge of information security controls.
Koolituse kirjeldus
The PECB ISO/IEC 27002 Lead Manager Certification demonstrates that you have acquired the necessary expertise for determining adequate information security controls needed to treat the risks identified by a risk assessment process.
The training course is followed by an exam. If you pass, you can apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. PECB Certified ISO/IEC 27002 Lead Manager.
More information: PECB Certified ISO/IEC 27002 Lead Manager
Koolituse teemad
- Day 1
- Introduction to ISO/IEC 27002
- Training course objectives and structure
- Standards and regulatory frameworks
- Fundamental concepts of informationsecurity, cybersecurity, and privacy
- Information security managementsystem (ISMS) and ISO/IEC 27002
- Analyzing the organization’s existing security architecture
- Understanding information security risks
- Day 2
- Roles and responsibilities, assets, policies, and people controls
- Selection and design of controls
- Information security policies, procedures, and roles and responsibilities
- Information assets and access controls
- People control
- Day 3
- Physical controls and protection of information systems and networks
- Physical controls
- Operational security controls
- Protection of information systems and network controls
- Day 4
- Information security incident management and testing and monitoring of information security controls based on ISO/IEC 27002
- Supplier relationships and ICT supply chain
- Information security incident management
- Information security testing
- Monitoring information security controls
- Continual improvement
- Closing of the training course
Koolituse õpiväljundid
Upon successfully completing the training course, participants will be able to:
- Explain the fundamental concepts of information security, cybersecurity, and privacy based on ISO/IEC 27002
- Acknowledge the relationship between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
- Interpret the ISO/IEC 27002 information security controls in the specific context of an organization
- Support an organization in effectively determining, implementing, and managing information security controls based on ISO/IEC 27002
- Explain the approaches and techniques used for the implementation and effective management of information security controls
Koolitushind sisaldab:
- training;
- certification exam;
- course materials;
- certification of attendance the course.
Täienduskoolituse õppekavarühm: andmebaaside ja võrgu disain ning haldus (0612 ISCED)
Koolitaja
-
Andro KullAndro Kull during his career, has worked in both sectors, public and private. In the previous years he has worked for the financial sector with regards to IT and information security, and for the energy sector with regards to IT risks, where security and continuity demands are very high. Kull started his career as IT specialist and IT manager, and has worked extensively as IT auditor and as IT risk manager for one of the largest company in Estonia. At the same time, he founded a small consulting company and managed projects related to IT risk assessment, the implementation of security measures, business continuity planning (BC), planning for recovery (DR), and crisis management mostly in public sector organizations.
The international environment is not new to Andro Kull, since he has participated in the European Central Bank internet payment security working group. Kull has been cooperating with the IT banking supervisors on an international level. Furthermore, he has organized one international conference in Tallinn. In addition, he has worked for European Union DG Connect as advisor connected with IT risk management recommendations development.
Andro Kull holds a PhD degree from the University of Tampere, concentrating on the IT oversight and compliance verification methodologies, and he currently is lecturing IT risk and information security management issues at the University of Tallinn.
-
PECB ametlik koolitaja
Sulle võib huvi pakkuda ka:
