Information Security 27001 Foundation – ISO 27001 formação

Introdução

Este curso está disponível no modelo presencial e Live Online Training. O Live Online Training traz-lhe o ambiente dinâmico da sala de aula para a sua secretária. Através do seu computador, você interage com o formador e os formandos como se estivesse com eles na sala de aula. On this course, the students will acquire the fundamental knowledge to establish and operate an Information Security Management System (ISMS) based on the ISO/IEC 27001 standard. The course covers the fundamental concepts related with information security, an overview clause-by-clause of the ISO/IEC 27001 standard with high-level implementation guidance and discussion-based practical examples to implement the requirements of the standard, and best practices for the implementation of the ISO/IEC 27001 Annex A 114 controls, and/or others applicable according with the ISO/IEC 27002 control catalogue guidance. As the students advance through the subjects of course, they will be presented with the main supporting standards of the ISO/IEC 27000 family, this includes, but not only, the guidance for information security controls implementation (ISO/IEC 27002), the guidance for implementation of the standard requirements (ISO/IEC 27003), the guidance for performance evaluation (ISO/IEC 27004), and the guidance for information security risk assessment (ISO/IEC 27005). These standards provide guidance to establish, implement, maintain, and continually improve an ISO/IEC 27001 Information Security Management System. This course also provides an overview of other non-family and Information Security related best practices, legislation, and regulation and, on the last module, it covers an overview of the main concepts, principles, and best practices for auditing an ISMS based on the guidance of ISO 19011.

Metodologia

This course is based on theorical, and practical sessions supported by a real-world adapted case-study. The course includes hands-on practical and theorical exercises to:

• better prepare the students for the real-world challenges
• to prepare and increase the likelihood of success on the certification exam
• train and prepare professionals for participating in an ISMS implementation program or ISMS audit based on ISO/IEC 27001.

This course is available to be delivered in a Classroom and Live-Training model.
Live Training brings you the dynamic environment of the classroom, to your desk. Using your computer, you interact with the trainer and the trainees as if you were with them in the classroom.

Destinatários

This course is intended to:

• Information Security and/or IT Consultants, Auditors, Managers or Risk Professionals
• CISO, CIO, CSO or any Executive or Senior Manager responsible to ensure the alignment and delivery of value from Information Security to the organization
• Professionals responsible for the Information Security/IT Governance on the organization
• Any professional, either, IT, information security, business or any other, involved on the establishment, implementation, operations and/or continual improvement of an Information Security Management System (ISMS) based on ISO/IEC 27001
• Anyone who wants to learn the fundamentals of ISO/IEC 27001

Pré-Requisitos

Students should understand English as the course documentation is in this language. Please consult BEHAVIOUR to verify the availability of the course on other languages.

Duração (dias)

2 dias

Objectivos Gerais

At the end of this course students will be able to:

• Understand the fundamental information security concepts, and the main requirements and controls of ISO/IEC 27001
• Get to know and understand the correlation of the ISO/IEC 27000 family standards, including ISO/IEC 27001, ISO/IEC 27002, and related ISO and other best practices, legislation and regulation
• Support an organization on the implementation and operation of an ISMS based on ISO/IEC 27001, as part of an ISMS implementation team and/or during an implementation project
• Understand the fundamental audit concepts and principles based on the ISO 19011 standard
• Understand the several information security related source of requirements to discuss with the peers about relevant subjects to the maintenance and improvement of information security on the organization
• Support the organization on the achievement and maintenance of the ISO/IEC 27001 certification

Programa

1. Introduction to Information Security, the ISO/IEC 27001 standard and, related best practices
• Course introduction
• Information security standards, legislation and regulation
• Advancing for ISO/IEC 27001 Certification
• Information security fundamentals
• Presentation and overview of the ISMS requirements (Part 1- Clauses 4 to 6.1)
  • Information security context
  • Leadership and commitment
  • Planning (actions to address risks and opportunities)


2. ISMS and Audit concepts and principles
   • Presentation and overview of the ISMS requirements (Part 2 - Clauses 6.2 to 10; and Annex A)
     • Planning (objectives and plans to achieve them)
     • Support
     • Operation
     • Performance evaluation
     • Improvement
     • Annex A controls: overview and high-level implementation guidance
   • Introduction to audit concepts and principles based on ISO 19011
   
   
3. Certified Information Security 27001 Foundation (CIS27001FD) Exam

Exame

The “Certified Information Security 27001 Foundation” exam covers the following competence domains:

• Domain 1: Information security fundamentals
• Domain 2: Information Security Management System ISO/IEC 27001 requirements
• Domain 3: Fundamental audit concepts and principles based on ISO 19011

Language(s): English and Portuguese (please consult BEHAVIOUR for availability on additional languages).
Duration: 1 hour.
Exam details: One part exam
Results: “Pass or Fail” quantitative score. In the case of a failure, the result will be accompanied with the list of domains in which you had a mark lower than the passing grade. If the candidate fails the exam, he is entitled to one free retake within a 1-year period from the initial exam date.
Passing score: 260/400 marks.
Exam type: Multiple-choice questions.

Certificação

After successfully completing the certification exam, and signing the code of ethics, participants will achieve the credentials of Certified Information Security 27001 Foundation.
A certificate will be issued to participants who successfully pass the exam and comply with all the other requirements related to the selected credential. Candidates also receive the digital badge of the certification achieved.
The “Certified Information Security 27001 Foundation” personnel certification program is drafted and maintained according to the ISO/IEC 17024 standard.
(Note: This program does not provide the competencies for a specific function or role, thus, it does not have any personnel certification maintenance requirements).

Formador

Os nossos formadores são consultores e auditores de renome, com vários anos de experiência nas áreas de implementação, auditoria e formação na família ISO 27000, com particular incidência sobre as normas ISO 27001, ISO 27005 e normas associadas.

Informações Gerais

FORMAÇÃO PRESENCIAL

• Formação em regime presencial na língua portuguesa ou inglesa.
• Recursos materiais da formação em Inglês.
• Metodologia prática de implementação passo-a-passo.
• Certificado de Frequência de Formação Behaviour com 14 créditos CPD/CPE.
• Exame de Certificação presencial, em Português ou Inglês.
• Diploma digital de Certificação e Insígnia digital de Certificação, após sucesso no exame e conclusão do processo de candidatura. Este registo não tem qualquer custo associado.
• Se o candidato não for aprovado no exame, tem o direito a uma nova tentativa gratuita dentro de um período máximo de 12 meses, a contar da data do exame inicial.
• Coffee-break da manhã e da tarde (aplica-se para todas as formações de decorram nas instalações da Behaviour).

FORMAÇÃO LIVE ONLINE TRAINING

• Formação na língua portuguesa ou inglesa.
• Recursos materiais da formação online e em Inglês, com acesso online.
• Metodologia prática de implementação passo-a-passo.
• Certificado digital de Frequência de Formação Behaviour com 14 créditos CPD/CPE.
• Exame de Certificação online, em Português ou Inglês. O exame pode ser realizado até 3 meses, após a conclusão do curso.
• Diploma digital de Certificação e Insígnia digital de Certificação, após sucesso no exame e conclusão do processo de candidatura. Este registo não tem qualquer custo associado.
• Se o candidato não for aprovado no exame, tem o direito a uma nova tentativa gratuita dentro de um período máximo de 12 meses, a contar da data do exame inicial.

Benefícios

• ISO/IEC 27001 is an auditable Information Security Management System (ISMS).


• ISO/IEC 27001 allows certification and international recognition of an organization; access to new markets and optimization of operations; and improves quality, increases productivity, competitive advantage, customer satisfaction and sales revenues.


• Information Security 27001 Foundation course bases its pedagogical model in a certification program based on the ISO/IEC 17024 standard, which defines the requirements for certification of people, fulfilling the recommendations of ISO. (Note: Attention that this program does not provide the competences for a specific function, but it provides the knowledge required to be used by several functions and roles during the implementation and management of an ISMS. Due to this reason, the certification achieved does not have maintenance requirements)


• Information Security 27001 Foundation course geared towards to the knowledge needed to to support an organization in the implementation and operation of an ISMS based on ISO/IEC 27001 and provides guidance on the related best practices that can be used to support this process, including an overview of ISO/IEC 27002, ISO/IEC 27003, ISO/IEC 27004, ISO/IEC 27005, among others.


• Certification exam is monitored by an official Behaviour administrator.


• The Certified Information Security 27001 Foundation certification exam is conducted at the end of the course, on the last day of training, through on multiple-questions based exam.


• Upon success in the exam, the professional will achieve one the Information Security 27001 Foundation certification. In case of failure, professional may repeat the exam at no additional cost, within 1 year after the date of the 1st examination.


• Behaviour Pedagogical Model aims to provide a learning environment conducive to acquisition of competences, in accordance with objectives of each training program. Promoting interaction, participation and appreciation of experiences, we contribute to meaningful learning, certification and international recognition but, above all to the development of critical thinking and autonomy.


• Behaviour is an organization accredited by DGERT (Portuguese Government Entity) and has its Quality Management System (QMS) implemented in accordance with the requirements of ISO 9001, the requirements of DGERT, the requirements of the European standard NP 4512 and the standard ISO 10015.

Datas e Preço

Clique em “Preço e Inscrição” para aceder a mais informação, incluindo o preço:

Programa Datas Garantidas

(*) Todas as datas deste curso são garantidas nos eventos de ocorrem em Lisboa. Nas outras localizações os eventos estão sujeitos a um número mínimo de participantes
Na Behaviour todos os cursos em Lisboa ocorrem independentemente do número de formandos em sala. O conceito de constituição de turmas não existe no modelo pedagógico da Behaviour, por isso é que todas as datas públicas no site são garantidas. Assim, se estiver em Portugal ou em qualquer outra parte do mundo pode preparar a sua semana e a sua viagem, desde que garanta a sua inscrição no curso.

Descontos de Volume

A Behaviour para empresas atribui descontos dependendo do número total de participantes inscritos. Peça simulação de valores para o número de participantes que pretende inscrever para training@behaviour-group.com ou fale connosco através do chat.

Hotéis e Informações Úteis

Saiba onde pode ficar em Lisboa, perto da Behaviour. Consulte >>Onde Ficar<<