About the course
Certified ISO 27001 ISMS Lead Implementer Training Course
Learn from anywhere: get 20% off August training dates, plus selected self-paced online courses. For a limited time only. (T&Cs apply)
- Become an ISO 27001 lead implementer and gain the ISO Lead Implementer certification.
- Equips you with the skills to lead and manage an ISO 27001-compliant information security management system (ISMS) implementation project.
- ISO 27001 Lead Implementer online training available – choose whether you attend our courses Live Online or in person. Find out more.
- Our Classroom / Live Online option allows you to study your way, keeping travel and costs down to a minimum.
- IBITGQ and CIISec (The Chartered Institute of Information Security) accredited, three-day training course.
- Successful completion of the ISO 27001 Lead Implementer course and included exam leads to the ISO 17024-certificated ISO 27001 Certified ISMS Lead Implementer (CIS LI) qualification and 21 CPD/CPE points.
Training course outline
This fully accredited, practitioner-led course equips information security professionals with the skills to manage an ISO 27001 ISMS implementation project.
It will teach you:
- The nine critical steps involved in planning, implementing and maintaining an ISO 27001-compliant ISMS;
- Information security management best practices to ensure the confidentiality, integrity and availability of data;
- How to structure and manage your ISO 27001 project; and
- Typical pitfalls and challenges and how to deal with them.
COVID-19: remote delivery options
We would like to reassure our clients that all training courses will go ahead as scheduled during the current COVID-19 situation. As a company that fully embraces flexible and remote working, we have adjusted our delivery methods to allow you to learn from anywhere. Our Classroom / Live Online delivery option enables you to attend either in person or online. Please also refer to our COVID-19 policy.
Certified ISO 27001 ISMS Lead Implementer training course benefits
Designed by experts
Designed by the team that led the world’s first successful ISO 27001 implementation project.
Delivered by professionals
Real-world practitioners show you how to tackle an ISMS project from start to finish.
Fast-track to certification
Achieve a globally recognised ISO 27001 qualification certificated to ISO 17024 in just three days.
Group discussions, practical exercises and case studies throughout the course.
Learn from anywhere
Choose whether you attend Live Online or in person at one of our training venues throughout the UK.
Nine steps to success
Learn about the nine steps to implementing an ISMS.
See what our previous learners think about this course
95% of delegates passed first time
86% were happy with the pace of the course
90% found the course content to meet their expectations
94% agreed the course content was relevant.
Who should attend this course?
Anyone involved in information security management, writing information security policies or implementing ISO 27001, either as a lead implementer or as part of an implementation team, for example:
IT/ Information Security Consultants
IT/ Information Security Managers
IT/ Information Security Officers
IT/ Information Security Project Managers
Cyber security consultants
Head of IT
CISOs (Chief Information Security Officer)
Information security analysts
Why choose IT Governance for your training needs?
We’re internationally recognised as the authority on ISO 27001 – our team led the world’s first ISO 27001 certification project.
We have trained more than 8,000 professionals on ISMS implementations and audits.
Taught by industry experts – our trainers are working consultants with years of practical, hands-on experience.
Learn from anywhere – as a company that fully embraces flexible and remote working, we have adjusted our delivery methods to allow you to learn from anywhere. Our Classroom / Live Online delivery option enables you to attend either in person or online.
Pass first time or train again for free – we have trained more than 17,000 people and we’re confident you’ll pass with us first time. If you don’t, we’ll train you again for free.*
Choose the method that suits you – we offer classroom, instructor-led online, self-paced online, e-learning and in-house training options.
Access your training anywhere – all our course materials are provided as a digital copy, allowing you to access them anywhere and at any time. Documents will be made available 20 days before your course.
Business solutions to suit you – whether you’re a multinational wanting us to manage all your training needs or a small business wishing to boost your workforce skills, we offer a range of training solutions.
* Terms and conditions apply.
What does this training course cover?
Why information security management (ISM) is essential to an organisation.
The role and structure of an information security policy.
The key concepts, principles and main requirements of ISO/IEC 27001:2013.
The terms and definitions used in the standard, including risk and options for risk assessments.
How to interpret the requirements of ISO/IEC 27001:2013 to determine the scope of your ISMS.
How to secure senior management commitment by building a compelling business case.
How to structure and manage your ISO 27001 project.
How to allocate roles and responsibilities for your ISO 27001 implementation.
How to review and map your existing controls to Annex A of ISO 27001.
The importance of the Statement of Applicability (SoA), and justifications for inclusions and exclusions.
How to carry out an information security risk assessment – the core competence of information security management.
The benefits of and key issues when selecting, a risk assessment tool.
How to develop a management framework, write policies and produce other critical documentation.
The importance of staff, an effective communication strategy and general awareness training.
The key elements of management review.
How to prepare for your ISO 27001 certification audit and ensure you that you pass the first time.
How to manage and drive continual improvement under ISO 27001.
Setting up the project
Baseline security criteria
Annex A controls
Measure, monitor, review and improve
What’s included in this course?
A professional training venue with lunch and refreshments;
Full course materials (digital copy provided as a PDF file);
The ISO 27001 Certified ISMS Lead Implementer exam; and
A certificate of attendance.
What equipment do I need?
You will need a laptop for the duration of your course and exam. Full details on how to access the exam will be provided by email 1–2 days before sitting the exam.
Course duration and times
Day 1: 9:30am – 5:00pm
Day 2: 9:00am – 5:00pm
Day 3: 9:00am – 5:00pm
Learn from anywhere with our instructor-led Live Online courses, or Classroom / Live Online delivery options. Learn more.
Alternatively you can study in a classroom at one of our venues in London or Ely (Cambridgeshire).
Are there any prerequisites for this course?
There are no formal entry requirements for this course. We will, however, assume that delegates have a basic knowledge of ISO 27001 gained either through reading the ISO 27001:2013 standard or by attending the Certified ISO 27001 ISMS Foundation training course.
Is there any recommended reading?
We strongly recommend you purchase and read the standards before attending the course:
ISO/IEC 27001:2013 and ISO/IEC 27002:2013
We also recommend that you purchase and read the following textbooks:
ISO 27001/ISO27002 – A Pocket Guide
An Introduction to Information Security and ISO27001:2013 – A Pocket Guide
Certified ISO 27001 ISMS Lead Implementer exam
Attendees take the ISO 27001 Certified ISMS Lead Implementer (CIS LI) exam set by IBITGQ
(International Board for IT Governance Qualifications). There is no extra charge for this exam.
Delivery method: Online
Duration: 60 minutes
Format: Multiple choice
Pass mark: 65%
This course is equivalent to:
21 CPD points
What qualifications will I receive?
Certified ISO 27001 ISMS Lead Implementer (CIS LI).
This course is accredited by IBITGQ, as well as CIISec (The Chartered Institute of Information Security), it satisfies the CIISec Knowledge Areas requirements at Level 1: A1, A3, A7, C1, C2, D2, E3, F2, H1 and H2; and at Level 1+: A2, A4, A5, A6, B1, B2, D1, E1, E2, F1 and G1
You can demonstrate your professional and practical knowledge and expertise by registering your qualification on the IBITGQ/GASQ successful candidate register.
The PCI SSC (Payment Card Industry Security Standards Council) has indicated that it accepts GASQ certifications in relation to the IBITGQ-accredited courses as meeting the requirements of an individual applying to become a PCI DSS (Payment Card Industry Data Security Standard) QSA (Qualified Security Assessor).
How will I receive my exam results and certificates?
Provisional exam results will be available immediately on completion of the exam. Confirmed exam results will be issued within ten working days from the date of the exam.
Certificates for those who have achieved a passing grade will be issued within ten working days from the date of the exam.
Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format; please note that hard copy exam certificates are not issued.
Do I need proof of identity to take the exam?
Delegates must bring a form of photographic ID with them as the invigilator my request to check it prior to the exam.
Can exams be retaken?
Yes, if you are unsuccessful on the first attempt, you can retake the exam for an additional fee. You can email us to schedule the retest.
Your training pathway
This course is part of our training programme. You can download your training pathway below to find your next recommended courses.
Learn from anywhere with our range of instructor-led courses
Wherever you are in the world, you can now attend an IT Governance online course, and get the full benefit of a classroom session.
To make your life as easy as possible, we offer 3 ways to attend an instructor-led course:
Our instructor-led courses are hosted at professional training centres located in major cities across the UK.
Our instructor-led Live Online courses are hosted and delivered live by one of our expert trainers.
Learn from anywhere
Our instructor-led Classroom / Live Online courses give you the flexibility of attending a classroom course, either in person or by joining the classroom course online.
The benefits of learning from anywhere
Choosing an online option means you save on travel, parking, hotels and other fees.
Learn and obtain a professional certification from the comfort of your home.
Our courses use the latest conferencing technology that is compatible with all devices.
Our trainers focus on maximising audience participation and getting the most out of our online attendees.
All trainers have been hand-picked for their technical and practical expertise.
You have full control over your course booking, meaning you can edit delegate details, course dates and any special requirements.
Our Classroom / Live Online courses give you the full experience of a classroom course, whether you attend in person or to join the classroom online from your home or office.
There are currently no new dates advertised for this course