SPD logo

0800 298 2460

Newsletter Online Training Login
  • Courses
    Health & Social Care
    Media & Digital
    Leadership & Management
    • Executive Education
  • Conferences
  • In-House
  • Virtual Learning
  • About

    Venues and Facilities

    SPD

    News

    Sponsorship

ISO 27001 Lead Implementer Course

Home > Courses > ISO 27001 Lead Implementer Course

ISO/IEC 27001 Lead Implementer training enables you to develop the necessary expertise to support an organisation in establishing, implementing, managing and maintaining an Information Security Management System (ISMS) based on ISO/IEC 27001. During this training course, you will also gain a thorough understanding of the best practices of Information Security Management Systems to secure the organisation`s sensitive information and improve the overall performance and effectiveness.

After mastering all the necessary concepts of Information Security Management Systems, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27001 Lead Implementer” credential. By holding a PECB Lead Implementer Certificate, you will be able to demonstrate that you have the practical knowledge and professional capabilities to implement ISO/IEC 27001 in an organisation.

Course dates coming soon...

Please register interest below and we will keep you updated

All dates & locations
Other courses that may interest you
Overview Agenda All Dates/Locations Learning Outcomes Who should attend?

Overview

Tutor - Graeme Parker – CISSP, CCP-SIRA, CDPO, CISA, CISM, CCSK, CDPSE, ISO 27001 Master, is a cyber security professional and director of a security specialist consultancy.

Graeme has a broad cyber security background and proven expertise with in security having taken a number of high profile businesses through security improvement projects, and having gained experience in industries such as finance, insurance, healthcare, government, manufacturing and the charitable sector. Graeme also works for a number of certification bodies as an ISO 27001 Lead Auditor conducting certification audits in the UK and overseas.

Graeme started his career in IT in the banking sector before successfully implementing BS 7799 the forerunner to ISO 27001, in a number of UK National Health Service organisations.  Following that Graeme worked for some major IT leaders including Capita, Fujitsu, Hewlett Packard and Cap Gemini leading a number of security projects across a range of challenging industries.  Graeme has lead several organisations to ISO 27001 certification, developed security architectures and lead the implementation of complex security programmes.  

Graeme has produced white papers on a number of security topics and developed risk methods for Information Security and Business Continuity and is a regular speaker at events covering security topics.

Graeme’s main expertise is being able to develop security solutions which align to business needs and deliver pragmatic solutions in response to the organisation’s risk approach.  Graeme has in depth experience of working with suppliers to ensure the resilience and security of the supply chain a risk area often overlooked by many organisations.

Graeme holds a number of professional qualifications and also teaches CISSP, CISA and CISM courses and has a technical background holding the Cloud Security Alliance Certificate of Cloud Security Knowledge (CCSK) and Blockchain Council Certified Blockchain Expert (CBE) as well as operating as a UK Government Senior Information Risk Advisor.

Graeme delivers courses for several training companies as well as delivering private courses to organisations including Computer Sciences Corporation (CSC), Central Bank of Ireland, Ericson, ING, Novartis, Deloite and Unisys.  Graeme teaches these courses to customers around the world having recently delivered successful courses in the UK, Qatar, Saudi Arabia, Portugal, Canada, Romania, Italy, Sweden, Croatia, Germany, Netherlands, Kazakhstan, Mongolia, Indonesia, Malaysia, Suriname, Ukraine, Jamaica, Bahamas, Thailand, Nigeria, Fiji and the USA.

Exam

For more information about exam details, please visit Examination Rules and Policies.

Agenda

Day 1 Introduction to ISO/IEC 27001 and initiation of an ISMS

  • Course objectives and structure
  • Standards and regulatory frameworks
  • Information Security Management System (ISMS)
  • Fundamental principles of Information Security Management Systems
  • Initiating the implementation of an ISMS
  • Understanding the organisation and clarifying the Information Security objectives
  • Analysis of the existing management system

Day 2 Plan the implementation of an ISMS

  • Leadership and approval of the ISMS project
  • ISMS scope
  • Information Security policies
  • Risk assessment
  • Statement of Applicability and top management`s decision to implement the ISMS
  • Definition of the organisational structure of Information Security

Day 3 Implementation of an ISMS

  • Definition of the document management process
  • Design of security controls and drafting of specific policies & procedures
  • Communication plan
  • Training and awareness plan
  • Implementation of security controls
  • Incident Management
  • Operations Management

Day 4 ISMS monitoring, measurement, continuous improvement and preparation for a certification audit

  • Monitoring, measurement, analysis and evaluation
  • Internal audit
  • Management review
  • Treatment of non-conformities
  • Continual improvement
  • Preparing for the certification audit
  • Competence and evaluation of implementers
  • Closing the training

Certification Exam

The “PECB Certified ISO/IEC 27001 Lead Implementer” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP).

For more information about exam details, please visit Examination Rules and Policies.

All Dates & Locations

Date Venue Price from: Status Spaces Book Now Enquire

No dates are available.

Learning Outcomes

  • Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks
  • Master the concepts, approaches, methods and techniques used for the implementation and effective management of an ISMS
  • Learn how to interpret the ISO/IEC 27001 requirements in the specific context of an organization
  • Learn how to support an organization to effectively plan, implement, manage, monitor and maintain an ISMS
  • Acquire the expertise to advise an organization in implementing Information Security Management System best practices

Who should attend?

  • Managers or consultants involved in Information Security Management
  • Expert advisors seeking to master the implementation of an Information Security Management System
  • Individuals responsible for maintaining conformance with ISMS requirements
  • ISMS team members

Overview

Tutor - Graeme Parker – CISSP, CCP-SIRA, CDPO, CISA, CISM, CCSK, CDPSE, ISO 27001 Master, is a cyber security professional and director of a security specialist consultancy.

Graeme has a broad cyber security background and proven expertise with in security having taken a number of high profile businesses through security improvement projects, and having gained experience in industries such as finance, insurance, healthcare, government, manufacturing and the charitable sector. Graeme also works for a number of certification bodies as an ISO 27001 Lead Auditor conducting certification audits in the UK and overseas.

Graeme started his career in IT in the banking sector before successfully implementing BS 7799 the forerunner to ISO 27001, in a number of UK National Health Service organisations.  Following that Graeme worked for some major IT leaders including Capita, Fujitsu, Hewlett Packard and Cap Gemini leading a number of security projects across a range of challenging industries.  Graeme has lead several organisations to ISO 27001 certification, developed security architectures and lead the implementation of complex security programmes.  

Graeme has produced white papers on a number of security topics and developed risk methods for Information Security and Business Continuity and is a regular speaker at events covering security topics.

Graeme’s main expertise is being able to develop security solutions which align to business needs and deliver pragmatic solutions in response to the organisation’s risk approach.  Graeme has in depth experience of working with suppliers to ensure the resilience and security of the supply chain a risk area often overlooked by many organisations.

Graeme holds a number of professional qualifications and also teaches CISSP, CISA and CISM courses and has a technical background holding the Cloud Security Alliance Certificate of Cloud Security Knowledge (CCSK) and Blockchain Council Certified Blockchain Expert (CBE) as well as operating as a UK Government Senior Information Risk Advisor.

Graeme delivers courses for several training companies as well as delivering private courses to organisations including Computer Sciences Corporation (CSC), Central Bank of Ireland, Ericson, ING, Novartis, Deloite and Unisys.  Graeme teaches these courses to customers around the world having recently delivered successful courses in the UK, Qatar, Saudi Arabia, Portugal, Canada, Romania, Italy, Sweden, Croatia, Germany, Netherlands, Kazakhstan, Mongolia, Indonesia, Malaysia, Suriname, Ukraine, Jamaica, Bahamas, Thailand, Nigeria, Fiji and the USA.

Exam

For more information about exam details, please visit Examination Rules and Policies.

Agenda

Day 1 Introduction to ISO/IEC 27001 and initiation of an ISMS

  • Course objectives and structure
  • Standards and regulatory frameworks
  • Information Security Management System (ISMS)
  • Fundamental principles of Information Security Management Systems
  • Initiating the implementation of an ISMS
  • Understanding the organisation and clarifying the Information Security objectives
  • Analysis of the existing management system

Day 2 Plan the implementation of an ISMS

  • Leadership and approval of the ISMS project
  • ISMS scope
  • Information Security policies
  • Risk assessment
  • Statement of Applicability and top management`s decision to implement the ISMS
  • Definition of the organisational structure of Information Security

Day 3 Implementation of an ISMS

  • Definition of the document management process
  • Design of security controls and drafting of specific policies & procedures
  • Communication plan
  • Training and awareness plan
  • Implementation of security controls
  • Incident Management
  • Operations Management

Day 4 ISMS monitoring, measurement, continuous improvement and preparation for a certification audit

  • Monitoring, measurement, analysis and evaluation
  • Internal audit
  • Management review
  • Treatment of non-conformities
  • Continual improvement
  • Preparing for the certification audit
  • Competence and evaluation of implementers
  • Closing the training

Certification Exam

The “PECB Certified ISO/IEC 27001 Lead Implementer” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP).

For more information about exam details, please visit Examination Rules and Policies.

All dates & locations

Date Venue Price from: Status Spaces Book Now Enquire

No dates are available.

Learning outcomes

  • Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks
  • Master the concepts, approaches, methods and techniques used for the implementation and effective management of an ISMS
  • Learn how to interpret the ISO/IEC 27001 requirements in the specific context of an organization
  • Learn how to support an organization to effectively plan, implement, manage, monitor and maintain an ISMS
  • Acquire the expertise to advise an organization in implementing Information Security Management System best practices

Who should attend?

  • Managers or consultants involved in Information Security Management
  • Expert advisors seeking to master the implementation of an Information Security Management System
  • Individuals responsible for maintaining conformance with ISMS requirements
  • ISMS team members

Related Courses & Events

Not quite found what you were looking for? Why not have a look at these other courses and events that may be of interest.

01

Certificate in Information Security Management Principles (CISMP)

02

A Preparation Bootcamp for the Certified Information Systems Security Professional Certification (CISSP)

03

Role of the Finance Director

Follow us and Connect

SCROLL UP

Make an Enquiry/
Register Interest

Thinking about attending one of our training programmes? Or do you need more information about continuing professional development? Simply contact our helpful team using the form on the right.

  • FOI Request & Privacy Policy |
  • Terms & Conditions |
  • Careers |
  • Partners |
  • About |
  • Find Us |
  • Contact Us

Copyright University of Salford
Registered Address: c/o Legal Services, 6th Floor, Maxwell Building, The Crescent, Salford, M5 4WT Company Number: 08127329