This fully accredited self-paced online course covers the nine key steps involved in planning, implementing and maintaining an ISO 27001-compliant information security management system (ISMS). Contains ten modules, with access for 1 year giving you the time to complete the course in your own time Developed by the team that led the world’s first successful ISO 27001 implementation project. Successful completion of the course and included exam leads to the ISO 17024-certificated ISO 27001 Certified ISMS Lead Implementer (CIS LI) qualification and 21 CPD/CPE points.
Format: 1 course with exam
Format: 2 - 4 courses with exam
Format: 5 - 8 courses with exam
Format: 9 - 12 courses with exam
Format: 13 - 16 courses with exam
Format: 17 - 20 courses with exam
Format: 1 course without exam
Format: 2 - 4 courses without exam
Format: 5 - 8 courses without exam
Format: 9 - 12 courses without exam
Format: 13 - 16 courses without exam
Format: 17 - 20 courses without exam
Training course outline
This fully accredited, practitioner-led course will equip you with the key skills involved in planning, implementing and maintaining an ISO 27001-compliant ISMS
It will teach you:
The nine key steps involved in planning, implementing and maintaining an ISO 27001-compliant ISMS; Information security management best practices to ensure the confidentiality, integrity and availability of data; How to structure and manage your ISO 27001 project; and Typical pitfalls and challenges and how to deal with them.
Certified ISO 27001 ISMS Lead Implementer self-paced online course benefits
Save time and travel costs
Save time and travel costs with ISO 27001 online training delivered to any location with internet access.
Study at your own pace
Online training enables you to study at your own pace, without committing to a structured timetable.
Designed by experts
Designed by ISO 27001 experts Alan Calder and Steve Watkins, drawing on their industry-leading implementation guide, IT Governance: An International Guide to Data Security and ISO 27001/ISO 27002 .
Delivered by professionals
Alan Calder and Steve Watkins will also deliver the course, using a combination of formal training, practical exercises and relevant case studies.
Who should attend this course?
Anyone involved in information security management, writing information security policies or implementing ISO 27001, either as a lead implementer or as part of an implementation team:
IT/ Information Security Consultant IT/ Information Security Manager IT/ Information Security Officer IT/ Information Security Project Manager Cyber security consultant Head of IT
CISO (Chief Information Security Officer) GDPR Consultant Information security analyst ISMS Manager Network manager
Why choose IT Governance for your training needs?
We’re internationally recognised as the authority on ISO 27001 – our team led the world’s first ISO 27001 certification project, and since then we have trained more than 8,000 professionals on information security management system (ISMS) implementations and audits. Trained by industry experts – our trainers are working consultants with years of practical, hands-on experience. Pass first time or train again for free – we have trained more than 17,000 people and we’re confident you’ll pass with us first time. If you don’t, we’ll train you again for free.* Choose the method that suits you – we offer classroom, instructor-led online, self-paced online, e-learning and in-house training options. Access your training anywhere – all our course materials are provided as a digital copy, allowing you to access them anywhere and at any time. Documents will be made available 20 days before your course. Business solutions to suit you – whether you’re a multinational wanting us to manage all your training needs or a small business wishing to boost your workforce skills, we offer a range of training solutions.
* Terms and conditions apply
What does this training course cover?
Why information security management (ISM) is important to an organisation.
The role and structure of an information security policy.
The key concepts, principles and main requirements of ISO/IEC 27001:2013.
The terms and definitions used in the Standard, including risk and options for risk assessments.
How to interpret the requirements of ISO/IEC 27001:2013 to determine the scope of your ISMS.
How to secure senior management commitment by building a compelling business case.
How to structure and manage your ISO 27001 project.
How to allocate roles and responsibilities for your ISO 27001 implementation.
How to review and map your existing controls to Annex A of ISO 27001.
The importance of the Statement of Applicability (SoA), and justifications for inclusions and exclusions.
How to carry out an information security risk assessment – the core competence of information security management.
The benefits of, and key issues when selecting, a risk assessment tool.
How to develop a management framework, write policies and produce other critical documentation.
The importance of staff, an effective communication strategy and general awareness training.
The key elements of management review.
How to prepare for your ISO 27001 certification audit and ensure you that you pass first time.
How to manage and drive continual improvement under ISO 27001.
Baseline security criteria
Annex A controls
Measure, monitor, review and improve
What’s included in this course?
Comprehensive documentation (digital copy provided as a PDF file); A CIS LI exam voucher; A certificate of attendance; and Access to a monthly security bulletin on the Learning Management System (LMS), put together by our in-house information security experts to keep you up to date with the latest threats. To see an example, click here.
What equipment should I bring?
You will need a computer for the duration of this course.
You will receive a voucher valid for six months for the ISO 27001 CIS LI exam when you buy this course.
Course duration and times
Ten modules – learn in your own time as your schedule allows.
This course is equivalent to 21 CPD/CPE points.
Are there any prerequisites for this course?
Before joining this course, you need to have attended the Certified ISO 27001 ISMS Foundation training course or you have a good working knowledge of ISO 27001 gained through practical experience.
Is there any recommended reading?
We strongly recommend you purchase and read the standard prior to attending the course:
ISO/IEC 27001 2013 and ISO/IEC 27002 2013
We also recommend that you purchase and read the following textbooks:
ISO 27001/ISO 27002 – A Pocket Guide An Introduction to Information Security and ISO 27001:2013 – A Pocket Guide
Exams and qualifications
Certified ISO 27001 ISMS Lead Implementer exam
Attendees take the ISO27001 Certified ISMS Lead Implementer (CIS LI), ISO 17024-certificated, exam set by IBITGQ at the end of the course. This is a 90-minute multiple-choice online exam, consisting of 40 questions. Candidates need to achieve a minimum of 75% to pass. There is no extra charge for taking the exam.
The exam uses automated remote proctoring. You will be monitored online through your webcam and your results will be confirmed once the footage of your examination has been reviewed by the certification body. System requirements:
Internet access for the full duration of the exam. A Flash-compatible webcam (built-in or external). Adobe Flash Player installed and activated. Proctoring software downloaded and installed on your computer.
Important: Before purchase, please check with your IT department that you have permission to download software on your computer.
What qualifications will I receive?
ISO 27001 Certified ISMS Lead Implementer (CIS LI).
This course is accredited by the International Board for IT Governance Qualifications (IBITGQ) , as well as CIISec (The Chartered Institute of Information Security) and satisfies the CIISec requirements atLevel 1: A1, A2, A3, A4, A5, A6, A7, B1, B2, G1, H1 and H2.
You can demonstrate your professional and practical knowledge and expertise by registering your qualification on the IBITGQ/ GASQ successful candidate register .
The PCI SSC has indicated that it accepts GASQ certifications in relation to the IBITGQ accredited courses as meeting the requirements of an individual applying to become a Payment Card Industry Data Security Standard (PCI DSS) Qualified Security Assessor (QSA).
How will I receive my exam results and certificates?
Provisional exam results will be available immediately on completion of the exam. Confirmed exam results will be issued within ten working days from the date of the exam.
Certificates for those who have achieved a passing grade will be issued within ten working days from the date of the exam.
Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format; please note that hard copy exam certificates are not issued.
Can exams be retaken?
Yes, if you are unsuccessful on the first attempt you can retake the exam for an additional fee. You can email us to schedule the retest for the exam.
Fulfilment of your self-paced training course
After you have completed your order, you will receive a sales receipt and a “Thank you for your order” confirmation email with the following steps (if you don’t receive these emails, please check your junk folder).
You must provide the required delegate information and a valid email address that the delegate can access during the course. This applies whether you have made the booking for yourself or on behalf of some