Information Security Foundation based on ISO/IEC 27002

Information Security Foundation based on ISO/IEC 27002

ISO 27002: Comprehensive Training Course

Delivers a comprehensive education in ISO27002 best practice and a recognised industry standard certification

Price: R 9 838,00 (ZAR) 
Ready to order
Sub Total: R 0,00 (ZAR)

Other payment options available


Information is the lifeblood of today’s organisation and ensuring that information is simultaneously protected and available is essential to modern business operation. ISO/IEC 27001 provides the specification for an information security management system and ISO/IEC 27002 draws on the experience of practitioners in over 40 countries to set out the best practice for the delivery of effective information security.

Closely aligned with the ISO27001 Standard, ISO27002 serves as a practical guideline for all members of staff as they initiate, implement and maintain an information security programme. An understanding of the best practice guidance as outlined in ISO27002 is essential to ensure the compliance to ISO27001 in any organisation.

The ISO27002 ISMS Foundation Course delivers a comprehensive education in ISO27002 best practice and a recognised industry standard certification awarded by EXIN.

Who is this course suitable for?

The one-day ISO27002 ISMS Foundation Course is designed for anyone in an organisation who is interested or responsible for the implementation of an effective information security programme based on the ISO27001/2 Standards. It is particularly suited for managers who are responsible in any way for the security or availability of confidential information assets. This includes Information Security, IT Service Management, Data Protection Officers and all Heads of Department.

Achieve EXIN Certification

This course is based on the EXIN Information Security Foundation syllabus and prepares delegates for the EXIN ISFS examination which is taken at the end of the day. Successful candidates will be awarded the EXIN Information Security Foundation Certificate.

What does this course cover?

During the course you will learn about:

  • The contents of ISO27002 and its relationship to ISO27001
  • Key roles and responsibilities of all staff responsible for information security
  • Information and data relationships (security, governance, assurance)
  • Defining threats and vulnerabilities and understanding Risk Management
  • Risk analysis with an understanding of Impacts, Likelihood and Probability
  • Required policies and Information Security Plan
  • External relationships with 3rd party organisations and individuals
  • Information Architecture and data flows
  • Protective marking and the relationship to Impact (Risk)

This course is presented by an experienced trainer in a class-room format and includes relevant workshop exercise and discussion sessions. Full course materials will be provided to all delegates.

Are there entry requirements?

There are no formal entry requirements. The course is designed to provide a comprehensive introduction to information security management. Given the close relationship of ISO27002 with ISO27001, we strongly recommend that delegates attend our ISO27001 ISMS Foundation Course prior to taking this course.

Part of the ISO27001 Training Programme

The ISO27002 Foundation Course complements our existing range of training courses and is a key element in a fully integrated and unique programme of ISO27001 education. This programme features Foundation and Advanced level courses which include the ISO27001 ISMS Lead Implementer and ISO27001 ISMS Internal Auditor Courses.

For further information on the importance and role of ISO27001 and ISO27002 in implementing an effective information security programme, please see ISO27001/ISO27002 A Pocket Guide by Alan Calder, which is available from the IT Governance bookstore.

What's included?

Our package includes lunch and refreshments, and full course materials, as described above.

Although the course is non-residential, we offer help finding appropriate hotels, close to the training venue. To take advantage of this offer, drop us an email after you book your course.

In-House Training

For a larger number of delegates attending from one company, we can deliver any IT Governance training course at your business premises. This offers you the flexibility of choosing a date and a location which is convenient for your team and the opportunity to discuss your business issues in the strictest confidence. It also has the advantage of reducing the cost and inconvenience of travel and accommodation associated with attendance at our training centres.

Contact us directly for an initial, no-obligation discussion of your requirements.

How to book?

There are three ways to book your course, either online, via fax, or telephone:

  • To book via telephone just call us on 00 800 48 484 484 , and we’ll take care of the details.
  • To book via fax download our booking form, complete it and fax to us on +44 (0) 1353 662667.
  • To book online simply enter the number of delegates you wish to send into the “Quantity” and select the course date from the drop down menu and click “Order now”.

We can also accept purchase orders from local authorities, government departments, and other public sector organisations and will consider account facilities for large corporate customers, follow this link to our payment options page for more information.

All bookings are subject to our terms and conditions.

More information:

Product Rating: (0.00)   # of Ratings: 0   (Only registered customers can rate)

There are no comments for this product.