Information Security Foundation according to ISO/IEC 27001 - Training

This practical, hands-on training equips participants with the knowledge and skills to establish and support Information Security Management Systems (ISMS) in accordance with the international standard ISO/IEC 27001. A combination of theoretical input and practical exercises enables participants to implement requirements effectively and prepares them for the ISO/IEC 27001 Foundation certification.

After completing this course, you will be able to:
Understand the fundamental concepts and objectives of information security
Describe the structure and components of an ISMS
Apply the PDCA (Plan-Do-Check-Act) methodology to information security processes
Implement the minimum requirements of ISO/IEC 27001 and apply information security controls effectively
Map guidelines from ISO/IEC 27002 to Annex A of ISO/IEC 27001
Contextualize related standards and frameworks such as ISO 9000, ISO/IEC 20000, ISO/IEC 15408, COBIT®, and BSI IT-Grundschutz
Integrate risk management principles into ISMS activities
Prepare for the ISO/IEC 27001 Foundation certification
All content aligns with the latest requirements of theISO/IEC 27001

Course Content – Practical Implementation & Compliance Strategy

The course covers the following topics:

ISO/IEC 27001: Requirements and Annex A controls
ISO/IEC 27002: Guidelines and implementation recommendations
PDCA methodology for continuous improvement
Risk management and its integration into an ISMS
Overview of IT governance and compliance frameworks (COBIT®, IT-Grundschutz, ISO/IEC 20000, ISO 9000)
Hands-on exercises and practical examples