Certified ISO 27001 ISMS Foundation and Lead Implementer Self-Paced Online

Provided by

Enquire about this course

Training course outline

The Certified ISO 27001 ISMS Foundation and Lead Implementer Self-Paced Online Combination Training Course consists of the Certified ISO 27001 ISMS Foundation and Lead Implementer self-paced online training courses.

This unique training programme provides:

  • A comprehensive introduction to the features and benefits of ISO 27001;
  • The nine key steps involved in planning, implementing and maintaining an ISO 27001-compliant ISMS;
  • Information security management best practices to ensure the confidentiality, integrity and availability of data; and
  • A practical guide to the management your ISO 27001 implementation project.

  • Certified ISO 27001 ISMS Foundation and Lead Implementer Self-Paced Online Combination Training Course benefits:

    Bite-sized learning

    Pre-recorded online course enabling you to learn in easy, manageable, bite-sized chunks.

    Study at your own pace

    Learn at a time, place and pace that suit you.

    Learning support

    Comes with a learner guide to be read alongside the video modules.

    Test your knowledge

    Knowledge-check questions at the end of each module to help gauge what you've learned.

    Designed by experts

    Designed by ISO 27001 experts Alan Calder and Steve Watkins, drawing on their industry-leading implementation guide, IT Governance - An International Guide to Data Security and ISO 27001/ISO 27002 .

    Delivered by professionals

    Taught by a real-world practitioner with extensive experience of implementing ISO 27001 in organisations of all sizes.

    Who should attend this course?

    Anyone involved in information security management, writing information security policies or implementing ISO 27001, either as a lead implementer or as part of an implementation team:

  • IT/ Information Security Consultant
  • IT/ Information Security Manager
  • IT/ Information Security Officer
  • IT/ Information Security Project Manager
  • Cyber security consultant
  • Head of IT

  • CISO (Chief Information Security Officer)
  • GDPR Consultant
  • Information security analyst
  • ISMS Manager
  • Network manager

  • Your Learning Path

    Find out how the Certified ISO 27001 ISMS Foundation and Lead Implementer training courses will help you start or enhance your knowledge and career.

    These courses are essential components of the following learning paths:

  • ISO 27001 roles
  • Information Security roles

  • Why choose IT Governance for your training needs?

  • We're internationally recognised as the authority on ISO 27001 - our team led the world's first ISO 27001 certification project, and since then we have trained more than 8,000 professionals on information security management system (ISMS) implementations and audits.
  • Trained by industry experts - our trainers are working consultants with years of practical, hands-on experience.
  • Pass first time or train again for free - we have trained more than 17,000 people and we're confident you'll pass with us first time. If you don't, we'll train you again for free.*
  • Choose the method that suits you - we offer classroom, instructor-led online, self-paced online, e-learning and in-house training options.
  • Access your training anywhere - all our course materials are provided as a digital copy, allowing you to access them anywhere and at any time. Documents will be made available 20 days before your course.
  • Business solutions to suit you - whether you're a multinational wanting us to manage all your training needs or a small business wishing to boost your workforce skills, we offer a range of training solutions.

  • * Terms and conditions apply.

    Course details

    What does this training course cover?

  • Why information security management (ISM) is important to an organisation.
  • The key concepts, principles and main requirements of ISO/IEC 27001:2013.
  • The terms and definitions used in the Standard, including risk and options for risk assessments.
  • How to interpret the requirements of ISO/IEC 27001:2013 to determine the scope of your ISMS.
  • How to secure senior management commitment by building a compelling business case.
  • How to structure and manage your ISO 27001 project.
  • How to review and map your existing controls to Annex A of ISO 27001.
  • The importance of the Statement of Applicability (SoA), and justifications for inclusions and exclusions.

  • How to carry out an information security risk assessment - the core competence of information security management.
  • How to develop a management framework, write policies and produce other critical documentation.
  • The importance of staff, an effective communication strategy and general awareness training.
  • Understand the requirements of ISO 27001 certification.
  • How to manage and drive continual improvement under ISO 27001.

  • What's included in this course?

  • Full course materials (digital copy provided as a PDF file).
  • Access to our LMS (learning management system) for one year.
  • A Certified ISO 27001 ISMS Foundation (CIS F) exam voucher (if purchased).
  • A Certified ISO 27001 ISMS Lead Implementer (CIS LI) exam voucher (if purchased).
  • A certificate of attendance.
  • A monthly security bulletin from our information security experts to keep you up to date with the latest threats. To see an example, click here .

  • Please note that this course can be purchased with or without the exams as required.

    What equipment do I need?

    You will need a computer and a webcam for the duration of this course.

    Course duration and times

    The self-paced online courses consist of modules of pre-recorded videos and exercises, which are available at any time for one year.

    Are there any prerequisites for this course?

    No prior knowledge or qualifications are required, and the course content is suitable for non-technical and technical staff.

    Is there any recommended reading?

    We strongly recommend you purchase and read the standard prior to attending the course:

  • ISO/IEC 27001 2013 and ISO/IEC 27002 2013

  • We also recommend that you purchase and read the following textbooks:

  • ISO 27001/ISO 27002 - A Pocket Guide
  • An Introduction to Information Security and ISO 27001:2013 - A Pocket Guide

  • Exams and qualifications

    Certified ISO 27001 ISMS Foundation and Lead Implementer exams

    Candidates take the Certified ISO 27001 ISMS Foundation (CIS F) and Certified ISO 27001 ISMS Lead Implementer (CIS LI) exams set by IBITGQ ( International Board for IT Governance Qualifications ) at the end of the course.

  • Delivery method: Online
  • Duration: 60 minutes (CIS F) and 90 minutes (CIS LI)
  • Questions: 40 for each exam
  • Format: Multiple choice
  • Pass mark: 65% (CIS F) and 75% (CIS LI)

  • This course is equivalent to:


    CPD points

    What qualifications will I receive?

    Certified ISO 27001 ISMS Foundation (CIS F) and Certified ISO 27001 ISMS Lead Implementer (CIS LI).


    All courses hold accreditations from IBITGQ (International Board for IT Governance Qualifications) and CIISec (The Chartered Institute of Information Security).

    The Certified ISO 27001 ISMS Lead Implementer course satisfies the CIISec Knowledge Areas requirements at Level 1: A1, A3, A7, C1, C2, D2, E3, F2, H1, and H2; and at Level 1+: A2, A4, A5, A6, B1, B2, D1, E1, E2, F1 and G1.

    As a premier personnel certification body, IBITGQ specialises in certifying individuals who demonstrate exceptional proficiency in IT governance practices.

    IBITGQ maintains accreditation to the ISO/IEC 17024:2012 standard, a globally recognised benchmark for conformity assessment. Accreditation by the International Accreditation Service (IAS) further underscores the course's commitment to meeting stringent certification requirements.

    ISO 17024 certification is esteemed within the industry and universally acknowledged by employers worldwide. By aligning with this standard, our course ensures that your qualifications are not only recognised but also highly valued by employers across diverse sectors.

    Upon successful completion of the course, you have the opportunity to validate your professional expertise by registering your qualification on the esteemed IBITGQ/ GASQ successful candidate register. This platform serves as a testament to your commitment to excellence in IT governance, setting you apart as a distinguished professional in the field.

    How will I receive my exam results and certificates?

  • Provisional exam results will be available immediately on completion of the exam. Confirmed exam results will be issued within ten working days from the date of the exam.
  • Certificates for those who have achieved a passing grade will be issued within ten working days from the date of the exam.
  • Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format; please note that hard copy exam certificates are not issued.

  • Can exams be retaken?

    Yes, if you are unsuccessful on the first attempt you can retake the exam for an additional fee. You can email us to schedule the retest for the exam.

    Ways to learn

    Fulfilment of your self-paced online training course

    After you have completed your order, you will receive a sales receipt and a Thank you for your order confirmation email. This email will ask you to provide essential participant information and gives instructions on how to access your course. If you don't receive this email, please check your junk folder.

    Participant information

    You must provide the requested participant information, including a valid email address. This applies whether you have made the booking for yourself or on behalf of someone.

    Please check this information is correct before submitting, as you are unable to change the participant's email address once it has been added to our system.

    Accessing the course

    If you are a new customer, you will receive an email from noreply@grcelearning.com with instructions on how to access the LMS (learning management system). If you or other participants do not receive this email, please check your junk folders.

    If you have accessed the LMS previously, please log in using your credentials. You can access the LMS at any time from your
    My Account page .

    Once you have logged in to the LMS, you can download the course material immediately.


    Important information: Please read our examination guide before scheduling your exam.

    All exams are delivered online using an automated proctor system managed by GASQ on behalf of IBITGQ ( International Board for IT Governance Qualifications ).

    What you need

    When you're ready to take your exam, please log in to your My Account page, scroll down to the 'Self-paced online training courses' section and click the 'Course completed' button. A member of our team will be in touch to provide details of your exam booking procedure.

    Exam can


    Start date Location / delivery
    No fixed date United Kingdom Book now

    Related article

    5 reasons to study online professional computing courses from the University of Essex Online 1. Gain a qualification accredited by the CPD Certific...