Course description
ISO/IEC 27001 Combined Package (Foundation + Practitioner), incl. official certifications
Information Security ISO 27001 : 2022
ISO/IEC 27001 : 2022 is the international standard for managing information security online. It establishes the requirements and structure of an information security management system (ISMS) and for each organization that achieves it, it certifies to all interested parties (shareholders, sponsors, managers, customers and suppliers) that an effective ISMS has been adopted and that the organization is continuously committed to maintaining it.
The difference between Foundation and Practitioner
Foundation level courses are considered entry-level training for those who want to learn the essential knowledge and basics of their role. Whereas Practitioner level courses are for those who have experience in the role and can then apply what they have learned in the workplace.
Details of APMG ISO/IEC 27001 : 2022 FOUNDATION & PRACTICES AS A COMPLETE ONLINE COURSE
- Two courses and two certifications: Foundation & Practitioner
- 8 months (2 x 4 months)
- 24-hour access
- 2 coupon codes valid for 2 years
- The latest version!
Our e-learning platform is optimized for access via web browsers, including mobile!
Information about the APMG ISO/IEC 27001 : 2022 Foundation course:
- 120 days access to the platform
- 8 modules (approximately 7 hours of video)
- 8 lessons
- Approx. 15 hours to complete the course
- 1 official test exam
- Downloadable PDF documents with detailed content (images, explanations) for each lesson
- Exercises and solutions
- 1 official test sample
- Access 24/7
- ISO/IEC 27001:2022 version
- Including the official APMGISO/IEC 27001:2022 exam
Information on ISO/IEC 27001:2022 Practitioner course:
- 120 days access to the platform
- 5 modules (approximately 7 hours of video)
- Approx. 15 hours to complete the course
- Downloadable PDF documents with detailed content (images, explanations) for each lesson
- Exercises and solutions
- 1 official test sample
- Access 24/7
- ISO/IEC 27001:2022 version
- Including the official APMGISO/IEC 27001:2022 exam
Part 1: ISO/IEC 27001- 2022 Foundation
Includes official exam and certification, practical e-learning course
The ISO/IEC 27001 Foundation course is the first step to qualify for the ISO/IEC 27001 standard on data security.
Training objectives ISO/IEC 27001 : 2022
At the end of the course you will know:
- ISO/IEC 27001 scope, purpose and how the standard can be used in your practice
- ISO/IEC 27001 keywords and definitions
- The requirements to achieve ISO/IEC 27001 certification and the need for continuous improvement
- Procedures, their general objectives and high-level requirements
- Applicability and scope requirements
- Use of controls to manage IS risks
- Internal audits and external certification purposes their function and terminology
- The relationship between best practices, ISO/IEC 27001, ISO 9001 and ISO/IEC 20000.
Content
- Introduction, background and terminology
- Key publications that make up the ISO/IEC 27001 family
- Leadership and support for an information security management system
- Planning and management of an information security management system
- Control objectives and controls for an information security management system
- Acquire ISO/IEC 27001 qualification.
Examination format:
- Multiple choice format, 40 minutes
- 50 questions per paper, Closed book
- 25 marks or more required to pass (out of 50 available) - 50%
PART 2: ISO/IEC 27001 Practitioner
ISO/IEC 27001 Practitioner - Information Security Officer is a professional certification that demonstrates an individual's knowledge and competence in implementing, managing and maintaining an information security management system (ISMS). This certification is aimed at professionals responsible for ensuring information security within an organization and involves a deep understanding of the ISO/IEC 27001 standard's requirements and controls.
Objective
- Apply the principles of information security management system policy and its scope, objectives and processes for information security within an organizational context
- Apply the principles of risk management including risk identification, analysis and evaluation and propose appropriate treatments and controls to reduce information security risk, support business objectives and improve information security
- Analyze and evaluate implemented risk treatments and controls to assess their effectiveness and opportunities for continuous improvement
- Analyze and evaluate the effectiveness of the ISMS through the use of internal audit and management review to continuously improve the adequacy, sufficiency and effectiveness of the information security management system
- Understand, create, apply and evaluate the adequacy, sufficiency and effectiveness of documented information and records required by ISO/IEC 27001
- Identify and apply appropriate corrective actions to maintain the information security management system in accordance with ISO/IEC 27001
Who it is addressed to
- Internal managers and employees responsible for implementing, operating and maintaining an information security management system
- Advisors involved in supporting organizations to implement, operate and maintain an information security management system
- Internal auditors, who must have actual knowledge of the ISO/IEC 27001 standard
Content
- Introduction, background and terminology
- Designing an information security management system
- Planning and working with an information security management system
- The objective of information security controls and security checks
Prerequisites
To participate in the ISO/IEC 27001 training, candidates must have one of the following certifications:
- ISO/IEC 27001 Foundation
- TÜV SÜD Foundation certificate in ISMS according to ISO/IEC 27001
- ICO-CERT ISMS 27001 Foundation
APMG ISO/IEC 27001 Practitioner online exam
- Objective testing
- 4 questions per paper with 20 points available per question
- 40 points or more required to pass (out of 80 available) - 50%.
- 2½ hours duration
- Open book exam
Accreditation:APMG
Which version of the standard does this ISO/IEC 27001 Practitioner course refer to?
AVC's ISO/IEC 27001 Practitioner courses for the APMG Information Security Officer certification are based on the ISO/IEC 27001:2022 standard. These courses are designed to provide participants with a comprehensive understanding of the latest updates and requirements of the 2022 version of the standard.
How can I take the ISO/IEC 27001 Practitioner exam?
AVC includes online exams as part of our training packages, both online with self-study and virtual distance/classroom courses. The exam can be taken online worldwide, and it will be proctored with an online proctoring service.
To sit for the ISO/IEC 27001 Practitioner exam, candidates must have ISO/IEC 27001 Foundation certification.
Is APMG's ISO/IEC 27001 Practitioner certification recognized?
APMG's ISO/IEC 27001 Practitioner certification is internationally recognized by various entities, boards and organizations. It is recognized by many organizations in the information security and risk management sectors, as well as by many employers in the IT, cyber security and risk management industries.
This certification is highly valued for its practical focus on implementing and managing an Information Security Management System (ISMS) in accordance with the ISO/IEC 27001 standard.
Is the APMG ISO/IEC 27001 Practitioner certification sufficient to be recognized as an Information Security Officer?
The APMG ISO/IEC 27001 Practitioner certification is a valuable credential that demonstrates knowledge and competence in implementing and managing an information security management system (ISMS) to the ISO/IEC 27001 standard. However, whether it is sufficient to be recognized as an Information Security Officer (ISO) depends on several factors:
- Experience: Many organizations require practical experience in information security in addition to certification.
- Requirements for the job: The specific requirements for an ISO position can vary across organizations and industries. Some may consider the APMG ISO/IEC 27001 Practitioner certification to be sufficient, while others may look for additional qualifications and experience.
- Legislation and industry standards: Some sectors, particularly those handling sensitive data, may have more stringent requirements for security officers.
The APMG ISO/IEC 27001 Practitioner certification is a strong qualification, but combining it with relevant experience and possibly other certifications will make you more recognized and suitable for an information security officer role.
Upcoming start dates
Contact this provider
Adding Value Consulting (AVC)
Reimagining Education: The Story Behind AVC The traditional education model has been around for centuries, but as I worked within it, I realized something was missing: flexibility, innovation, and accessibility. Students and professionals alike were struggling to balance education with...