Certified ISO 27001 ISMS and ISO 27701 PIMS Lead Implementer Combination Training Course

Provided by

Enquire about this course



Training course outline

The flagship of our ISO 27001 Implementation Learning Pathway, the Certified ISO 27001 ISMS Lead Implementer Training Course is focused on developing the in-depth knowledge and skills required to implement and deliver an ISMS.

The Certified ISO 27701 PIMS Lead Implementer Training Course equips you to lead an ISO/IEC 27701 PIMS implementation project and extend an ISO 27001-compliant ISMS to cover privacy information management.

COVID-19: remote delivery options

We would like to reassure our clients that all training courses will go ahead as scheduled during the current COVID-19 situation. As a company that fully embraces flexible and remote working, we have adjusted our delivery methods to allow you to learn from anywhere. Our Classroom / Live Online delivery option enables you to attend either in person or online. Please also refer to our COVID-19 policy.

Certified ISO 27001 ISMS and ISO 27701 PIMS Lead Implementer Combination Training Course benefits

Designed by experts

Designed by the team that led the world’s first successful ISO 27001 implementation project.

Delivered by professionals

Real-world practitioners show you how to tackle an ISMS and PIMS project from start to finish.

Fast-track to certification

Achieve globally recognised ISO 27001 and ISO 27701 qualifications certificated to ISO 17024 in just five days.

Hands-on study

Group discussions, practical exercises and case studies throughout the course.

Learn from anywhere

Choose whether you attend Live Online or in person at one of our training venues in Ely or London.

Nine steps to success

Learn about the nine steps to implementing an ISMS.

Who should attend this course?

Anyone involved in information security or privacy information management, writing information security policies or implementing ISO 27001 or ISO 27701, either as a lead implementer or as part of an implementation team, for example:

  • IT/information security consultants
  • IT/information security managers
  • IT/information security officers
  • GDPR consultants
  • PII controllers or processors
  • Privacy managers


  • Data protection managers
  • Cyber security consultants
  • Heads of IT
  • Chief information security officers
  • ISMS managers
  • Network managers


  • Your Learning Path

    Find out how the Certified ISO 27001 ISMS and ISO 27701 PIMS Lead Implementer Combination Training Course will help you enhance your knowledge and start or boost your career.

    The Certified ISO 27001 ISMS Lead Implementer (CIS LI) and Certified ISO 27701 PIMS Lead Implementer (CPI LI) courses are essential components of the following learning path:

  • ISO 27001 roles


  • Why choose IT Governance for your training needs?

  • We’re internationally recognised as the authority on ISO 27001 – our team led the world’s first ISO 27001 certification project.
  • We have trained more than 8,000 professionals on ISMS implementations and audits.
  • Taught by industry experts – our trainers are working consultants with years of practical, hands-on experience.
  • Learn from anywhere – as a company that fully embraces flexible and remote working, we have adjusted our delivery methods to allow you to learn from anywhere. Our Classroom / Live Online delivery option enables you to attend either in person or online.
  • Pass first time or train again for free – we have trained more than 17,000 people and we’re confident you’ll pass with us the first time. If you don’t, we’ll train you again for free. *
  • Choose the method that suits you – we offer classroom, instructor-led online, self-paced online, e-learning and in-house training options.
  • Access your training anywhere – all our course materials are provided as a digital copy, allowing you to access them anywhere and at any time. Documents will be made available 20 days before your course.
  • Business solutions to suit you – whether you’re a multinational wanting us to manage all your training needs or a small business wishing to boost your workforce skills, we offer a range of training solutions.


  • * Terms and conditions apply.

    Course details

    What does this training course cover?

    Certified ISO 27001 ISMS Lead Implementer covers:

  • Why information security management is essential to an organisation.
  • The role and structure of an information security policy.
  • The key concepts, principles and main requirements of ISO 27001.
  • The terms and definitions used in the Standard, including risk and options for risk assessments.
  • How to interpret the requirements of ISO 27001 to determine the scope of your ISMS.
  • How to secure senior management commitment by building a compelling business case.
  • How to structure and manage your ISO 27001 project.
  • How to allocate roles and responsibilities for your ISO 27001 implementation.
  • How to review and map your existing controls to Annex A of ISO 27001.
  • The importance of the SoA (Statement of Applicability), and justifications for inclusions and exclusions.
  • How to carry out an information security risk assessment – the core competence of information security management.
  • The benefits of, and key issues when selecting, a risk assessment tool.
  • How to develop a management framework, write policies and produce other critical documentation.
  • The importance of staff, an effective communication strategy and general awareness training.
  • The key elements of management review.
  • How to prepare for your ISO 27001 certification audit and ensure that you pass first time.
  • How to manage and drive continual improvement under ISO 27001.


  • Certified ISO 27701 PIMS Lead Implementer covers:

  • Why personal information management is important to an organisation.
  • The key concepts, principles and main requirements of ISO 27701.
  • The relationship between ISO 27701 and ISO 27001 (and other management system standards).
  • The PIMS-specific requirements related to ISO 27001.
  • The PIMS-specific requirements related to ISO 27002.
  • The documentation you should keep as part of your PIMS.
  • Privacy impact assessments.
  • The importance of staff awareness training to comply with data protection regimes.
  • The relationship between data controllers and processors, with regard to data transfers.
  • How to prepare for your ISO 27701 certification audit and ensure you pass first time.
  • Responding to data security incidents, including relevant notifications.
  • How to manage and drive continual improvement under ISO 27701.
  • The role and structure of a privacy information policy.
  • Annex A – PIMS objectives and controls for data/PII controllers.
  • Annex B – PIMS objectives and controls for data/PII processors.
  • Annex D – mapping to the GDPR.


  • What’s included in this course?

  • Full course materials (digital copy provided as a PDF file).
  • The Certified ISO 27001 ISMS Lead Implementer (CIS LI) and Certified ISO 27701 PIMS Lead Implementer (CPI LI) exams.
  • A certificate of attendance.


  • Course duration and times

    Day 1: 9:30 am – 5:00 pm
    Day 2: 9:30 am – 5:00 pm
    Day 3: 9:15 am – 5:00 pm
    Day 4: 9:15 am – 5:00 pm
    Day 5: 9:15 am – 4:30 pm

    Course locations

  • Learn from anywhere with our instructor-led Live Online courses, or Classroom / Live Online delivery options. Learn more .
  • Alternatively, you can study in a classroom at one of our venues in London or Ely (Cambridgeshire).


  • Are there any prerequisites for this course?

    There are no formal entry requirements for this course. We will, however, assume that participants have a basic knowledge of ISO 27001 gained either through reading the ISO 27001 standard or by attending the Certified ISO 27001 ISMS Foundation Training Course .

    Is there any recommended reading?

    We strongly recommend you purchase and read the following standards before attending the course:

  • ISO/IEC 27001:2013 and ISO/IEC 27002:2013
  • ISO/IEC 27701:2019


  • We also recommend that you purchase and read the following textbooks:

  • ISO27001/ISO27002 – A Pocket Guide
  • An Introduction to Information Security and ISO27001:2013 – A Pocket Guide


  • Exams and qualifications

    Certified ISO 27001 ISMS Lead Implementer (CIS LI) and Certified ISO 27701 PIMS Lead Implementer (CPI LI) exams.

    Candidates will take the following ISO 17024-certificated IBITGQ exams:

  • CIS LI
  • CPI LI


  • Both exams consist of 40 multiple-choice questions, with a pass mark of 65%. There is no extra charge for either exam.

    This course is equivalent to:

    35

    CPD points

    What qualifications will I receive?

  • Certified ISO 27001 ISMS Lead Implementer (CIS LI)
  • Certified ISO 27701 PIMS Lead Implementer (CPI LI)


  • Accreditation

    The Certified ISO 27001 ISMS Lead Implementer course is accredited by IBITGQ (International Board for IT Governance Qualifications) and CIISec (Chartered Institute of Information Security) . It satisfies the CIISec Knowledge Areas requirements at Level 1: A1, A3, A7, C1, C2, D2, E3, F2, H1 and H2; and at Level 1+: A2, A4, A5, A6, B1, B2, D1, E1, E2, F1 and G1.

    IBITGQ (International Board for IT Governance Qualifications) is a personnel certification body that certifies individuals in the field of IT governance.

    IBITGQ is accredited to the ISO/IEC 17024:2012 standard ( Conformity assessment – General requirements for bodies operating certification of persons ) by IAS (International Accreditation Service). ISO 17024 is a global, industry-recognised benchmark, and qualifications accredited to this standard are recognised and highly valued by employers throughout the world.

    You can demonstrate your professional and practical knowledge and expertise by registering your qualifications on the IBITGQ/ GASQ successful candidate register .

    The PCI SSC (Payment Card Industry Security Standards Council) has indicated that it accepts GASQ certifications in relation to the IBITGQ-accredited courses as meeting the requirements of an individual applying to become a PCI DSS (Payment Card Industry Data Security Standard) QSA (Qualified Security Assessor) .

    How will I receive my exam results and certificates?

    Provisional exam results will be given immediately after completing the exams. Confirmed results will be issued within ten working days with your certificate to your email address.

    Do I need to bring proof of identity?

    Candidates must have a form of photographic ID with them as the invigilator may request to check it before the exam.

    Can exams be retaken?

    Yes. If you are unsuccessful on the first attempt, you can retake the exam for an additional fee. You can email us to schedule the retest.

    Recertification

    To support your continued professional development, it is essential that you maintain an adequate level of current knowledge associated with an ISO 27001 lead implementer. To demonstrate this competency to e

    Enquire

    Start date Location / delivery
    No fixed date United Kingdom Book now

    Related article

    Misinformation is dangerous. It not only leads to wrong decision-making, it can cost you money. (ISC)² certifications are highly regarded