Thank you for sending your enquiry! One of our team member will contact you shortly.
Thank you for sending your booking! One of our team member will contact you shortly.
Course Outline
Day 1:
- Introduction to Information Security controls as recommended by ISO/IEC 27002
Day 2:
- Security requirements and objectives based on ISO/IEC 27002
Day 3:
- Monitoring, measurement, analysis, and evaluation of Information Security controls
Day 4:
- Continual improvement of an organization's information security performance
Day 5:
Certification Exam
The “PECB Certified ISO/IEC 27002 Lead Manager” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competence domains:
- Domain 1: Fundamental principles and concepts for Information Security Controls
- Domain 2: Information Security Control based on ISO/IEC 27002
- Domain 3: Planning and evaluating the need and applicability of information security controls
- Domain 4: Implementation and management of information security controls
- Domain 5: Monitoring and measurement of information security controls
- Domain 6: Continual improvement
Requirements
A fundamental understanding of ISO/IEC 27002 and comprehensive knowledge of Information Security.
Testimonials
Ann is very knowledgeable on the subject. She is constantly varying pace according to the feedback. There is a lot of room for discussing attendee's own experiences. It was a great joy !.
Sjoerd Hulzinga - KPN p/a Bloomville
It was quite informal.
- Capita Business Services Ltd
Trainer covered a lot of ground over a relatively short period.
- Capita Business Services Ltd
I found it very interesting to learn all about what happens behind the scenes when it comes to IT systems. I also enjoyed learning about security and what hackers do as ethical hacking is an avenue I'm very keen in pursuing.
- Knowledge Pool/ DVLA
Richard was very knowledgeable in his field.
- Knowledge Pool/ DVLA
It was pitched at the right level - challenging but understandable & informative.
Louise Voisey - Capita Business Services Ltd
Hacking
Mohalmald Salim - PSO
Level of expertise from the trainer Use case examples
Pierre Maillot - Bosch
His deep knowledge of the IoT topic.
Bosch
Ron's experience on how to successfully implement IoT projects and the deep technical subjects covered.
Bosch
relevance of content to our I4.0 business environment
Bosch
Very knowledgeable trainer, was able to adjust to audience knowledge, excellent industry experience and ability to relate to audience needs Excellent content preparation , tailored to needs discussed beforehand. Good supplement reading materials prepared by trainer
Oliver Steinig - Bosch
Ron was very mindful of his audience and addressed everyone's questions. He checked his audience for clarity and was willing to spend the time to review a topic until everyone understood the topic. He gauged the audience for energy levels and suggested a break when he saw that the energy from the group was waning. This was much appreciated.
Bosch
The pace of training delivery.
Ian McInally - KnowledgePool
the exercises and group discussions.
KnowledgePool
The trainer was very knowledgeable and was happy to go at the pace of the attendees. He was polite and respectful to all those in attendance. I felt I learnt a lot from the course as the trainer was very succinct in his delivery when going through the PP slides. A really good, worth while course from my personal point of view.
Julie Price - KnowledgePool
The environment was really relaxed and open so everyone could ask questions or put across points of view or experience. David the trainer was a SME on the subject and his style was very good.
KnowledgePool
Tutorials
ICAO
The example and exercise
ICAO
I got more information regarding the web applications' security issues, the different tools that could be used to cope with these issues, and more advice from the trainer to handle all these issues.
ICAO
the list of tools
ICAO
how it was broken into the technical and security mindset aspects.
ICAO
Excercises.
ICAO
he is very knowledgeable and comprehensive.
ICAO
Matthew was very knowledge and has lot experience to share with us. it was very pleasant, as he take the time to listen to us and answer to our questions. Thank you Matthew, it was awesome.
ICAO
The second day, scenarios exercises.
Christina Hutchings - KnowledgePool
The real life examples Ron gave.
Bosch
I liked the trainer's introduction and anecdotes to make the learning more real
KnowledgePool
David's in depth knowledge. His relationship building skills with the audience. I really enjoyed the way he managed to make us (as a collective audience) enjoy the quite dry and uninteresing subject matter. He had anecdotes and knowledge of specific examples of security failings - hacker attacks - BCP 'breakdowns' etc which put flesh on the bones to the piece of legislation or 'best practice' for BCP that he was trying to teach us about. A really engaging, down to earth and personable man: A very good listener and a fabulous, charismatic trainer.
Cris Bollin - KnowledgePool
All is excellent
Manar Abu Talib - Dubai Electronic Security Center
- Understanding that ATT&CK creates a map that makes it easy to see, where an organization is protected and where the vulnerable areas are. Then to identify the security gaps that are most significant from a risk perspective. - Learn that each technique comes with a list of mitigations and detections that incident response teams can employ to detect and defend. - Learn about the various sources and communities for deriving Defensive Recommendations.
CHU YAN LEE - PacificLight Power Pte Ltd
He took his time to make sure everyone understood and were on the same wave length
Tina Hopkins - Capita Business Services Ltd
I found the training too in depth for IT beginners. There was too many high level subjects that i felt were too advanced for a beginner level.
Capita Business Services Ltd
Related Courses
Cloud Computing Security Knowledge (CCSK) Preparation Course
21 hoursCloud Computing Security Knowledge (CCSK) Preparation Course The CCSK course is intended to provide understanding of security issues and best practices over a broad range of cloud computing domains. As cloud computing is becoming the dominant IT
Certificate of Cloud Security Knowledge
14 hoursDescription: This 2-day CCSK Plus course includes all content from the CCSK Foundation course, and expands on it with extensive hands-on labs in a second day of training. Students will learn to apply their knowledge by performing a series of
Certificate of Cloud Security Knowledge (CCSK) Foundation (CSA authorized)
14 hoursThe CCSK Foundation course starts with the fundamentals, then increases in complexity as it works through all 16 domains of the CSA Security Guidance, recommendations from the European Union Agency for Network & Information Security (ENISA), and
Certificate of Cloud Security Knowledge (CCSK) Plus (CSA authorized)
21 hoursThe CCSK Plus builds on the foundation class with expanded material and offers extensive hands-on activities that reinforce classroom instruction. Students engage in a scenario of bringing a fictional organization securely into the cloud, which
Certified Ethical Hacker
35 hoursObjectives: To prepare the student for the Ethical Hacking and Countermeasures examination. On passing this examination you will be awarded the Certified Ethical Hacker certification Target Audience: This course will significantly benefit
Incident Response
21 hours
Threat Hunting
21 hours
C/C++ Secure Coding
21 hoursThis three day course covers the basics of securing the C/C++ code against the malicious users who may exploit many vulnerabilities in the code with memory management and input handling, the course cover the principals of writing secure
Advanced Java Security
21 hoursEven experienced Java programmers are not mastering by all means the various security services offered by Java, and are likewise not aware of the different vulnerabilities that are relevant for web applications written in Java. The course –
Standard Java Security
14 hoursDescription The Java language and the Runtime Environment (JRE) was designed to be free from the most problematic common security vulnerabilities experienced in other languages, like C/C++. Yet, software developers and architects should not only
Java and Web Application Security
21 hoursDescription Beyond solid knowledge in using Java components, even for experienced Java programmers it is essential to have a deep knowledge in web-related vulnerabilities both on server and client side, the different vulnerabilities that are
Microsoft SDL Core
14 hoursThe Combined SDL core training gives an insight into secure software design, development and testing through Microsoft Secure Development Lifecycle (SDL). It provides a level 100 overview of the fundamental building blocks of SDL, followed by design
Fundamentals of Corporate Cyber Warfare
14 hoursCyber Warfare is a growing problem for enterprises. As attackers employ more and more sophisticated technologies to launch their attacks, it is vital for companies to understand the nature of these attacks and the defense mechanisms needed to keep
Open Source Intelligence (OSINT) Advanced
21 hoursOpen Source Intelligence (OSINT) refers to any information that can legally be gathered from free, public sources about an individual or organization. OSINT also refers to the process of collecting this data, analyzing it, and using it for
Open Source Cyber Intelligence - Introduction
7 hoursThis Introduction to Open Source Intelligence (OSINT) course will provide delegates with skills to become more efficient and effective at finding those key pieces of intelligence on the Internet and World Wide Web. The course is highly practical