Information Security Foundation based on ISO 27002 (EXIN)

Information Security Foundation

The fundamentals of Information Security based on ISO/IEC 27002

Summary

Information security is becoming increasingly important. Globalization of the economy leads to a growing exchange of information between organizations (their employees, customers and suppliers) and a growing use of networks, such as the internal company network, connection with the networks of other companies and the Internet. Furthermore, activities of many companies now rely on ICT, and information has become a valuable asset. Protection of information is crucial for the continuity and proper functioning of the organization: information must be reliable.

This 3-day learning experience provides a good understanding of the Information Security Concepts and Good Practices based on ISO/IEC 27002:2013. This training course is fully compliant with ITIL® which is based on ISO/27002 for its Information Security Management process.

At the end of the course, attendees will take the Information Security Management based on ISO/IEC 27002 Foundation (EXIN) exam

ISO 27002 Foundation training course accredited by EXIN

Date of upcoming public sessions

Course calendar

Document sans titre
Select country:  
Start Country Venue Language Price
  7 April Abidjan 890.000 FCFA
  13 April Paris 1.250 €
  25 May Abidjan 890.000 FCFA


Date guaranteed to run
Public classroom live
Virtual classroom live
Self paced course
Official exam is included
Document sans titre

Early Bird discount

Save 10%* on the price of any registration received, accompanied by its full payment, more than 30 days before the first day of the session.

* This offer is valid for public training sessions only and cannot be cumulated with any other promotional rate.



 

You can also contact us about the organization of an in-house training course

Audience

The course Information Security Foundation based on ISO/IEC 27002 is intended for everyone in the organization who is processing information. The module is also suitable for entrepreneurs of small independent businesses for whom some basic knowledge of information security is necessary.

This module can be a good start for new information security professionals.

Prerequisites

There is no pre-requisite for the Information Security Foundation course and exam but an interest and/or background in information security or service management would be an advantage.

Learning objectives

The objective of this session is to raise the awareness that information is valuable and vulnerable, and to learn which measures are necessary to protect information.

The Certificate EXIN Information Security Foundation based on ISO/IEC 27002 is part of the qualification program Information Security and is a prerequisite for the following modules: Information Security Management Advanced based on ISO/IEC 27002 and Information Security Management Expert based on ISO/IEC 27002

PLEASE NOTE: Information Security Foundation course is your start towards Information Security Management practice and is not sufficient for individuals who need to develop skills for implementing controls and measures. We can help develop a roadmap for your personal Certification to aid in those objectives.

Course agenda


Introduction, context and definitions

  •  Introduction to management systems and risk management
  •  Information security history and state of the art
  •  Definitions
  •  The ISO/IEC 27001 certification
  •  Why certify an organization?

Key publications and concepts

  •  The ISO/IEC 2700x series
  •  Concept of an Information Security Management System (ISMS)
  •  The Deming cycle (PDCA)
  •  ISO/IEC 27002 main themes

Information and security concepts and good practices

    •  The concept of information
    •  Value of Information
    •  Reliability aspects

    Threats and Risks

    •  Threats and Risks
    •  Relationships between threats, risks and the reliability of information
    •  Preventative, repressive and corrective measures
    •  Risk evaluation
    •  The Risk Management strategy

    Approach and Organization

    •  Security Policy and Security Organization
    •  Components of the security organization
    •  Information Security Incidents Management

    Measures

    •  Importance of measures
    •  Physical security measures
    •  Technical measures
    •  Organizational measures

    Legislation and regulations

    •  Audit
    •  Code of practice
    •  Compliance management
    •  Examples of legislation related to Information Security
    •  Examples of regulations related to Information Security

    Exam preparation

    •  Exam Tips & Tricks
    •  Mock Exam

    Official online Information Security Management based on ISO/IEC 27002 Foundation (EXIN) Exam (60 Minutes)

    Conclusion

Exam

TThe official Information Security Management based on ISO/IEC 27002 Foundation (EXIN) exam consists of 40 multiple choice questions in total that cover all areas of the Information Security Foundation based on ISO/IEC 27002 syllabus. The duration of the exam is 60 minutes. The pass mark is 65% (26 right answers out of 40). This exam is a closed-book exam and is taken online at the end of the course.

Achievement of this certificate is a prerequisite for Information Security Management Advanced based on ISO/IEC 27002 and Information Security Management Expert based on ISO/IEC 27002.

Trainer

Document sans titre Alain Bonneaud CGEIT® - COBIT® 5 - ITIL® - ISO/IEC 20000 - ISO/IEC 27001


The course Information Security Management based on ISO/IEC 27002 Foundation (EXIN) is delivered by Alain BONNEAUD (CGEIT®, COBIT® 5 Accredited Trainer). Alain is one of the few people in the world having an extensive experience in the implementation and Assessment of COBI® 5 enablers and holding the COBIT® 5 Certified Assessor certification issued by ISACA®.

Alain Bonneaud is an International Expert in the domains of Governance of Enterprise IT (GEIT®) and IT Service Management (ITIL®, ISO/IEC 20000, COBIT® 5, ISO/IEC 27001, ISO/IEC 38500, PRINCE2®). Alain regularly acts as "IT Governance and Transformation Senior Manager" within International Firms all around the world, to assist them in the implementation of IT Governance and IT Service Management (ITSM). He is also accredited for many years to deliver training and certification: ITIL® ( Foundation, Intermediate and MALC), ISO / IEC 20000, ISO / IEC 27002 and COBIT®.

Alain is also Head of Delegation of Ivory Coast in ISO/IEC JTC1/SC40 and JTC1/SC27 sub-committees, and, as such, he is co-editor of ISO/IEC 27013 (Integrated Implementation of ISO/IEC 20000 and ISO/IEC 27001, published in 2013) and ISO 20000-8 (ISO/IEC 20000 Implementation for the Very Small Entities - To be published).

Price and financial conditions


Fees include the whole package composed of :

  •  training delivery by a trainer approved by EXIN on the Information Security qualification scheme,
  •  personalized welcome in the training room with mineral water, breaks and lunch,
  •  course material approved by EXIN,
  •  official Information Security Management based on ISO/IEC 27002 Foundation (EXIN) examination (EXIN Qualification),
  •  delivery of the Information Security Foundation Certifcate by EXIN (for successful candidates),
  •  group limited to 10 people max. (25 people max. for online courses) in order to guarantee the quality of the interactivity with the instructor.
Document sans titre

Terms & Conditions

To be validated, Information Security Management based on ISO/IEC 27002 Foundation (EXIN) online registration is requested (a registration link is provided in the "Dates" tab on the line corresponding to each session)

Full payment of the course and exams must be recieved at latest 10 working days before the start of the training. We accept payments by bank transfer, credit card or Paypal.

Document sans titre

Early Bird discount

Save 10%* on the price of any registration received, accompanied by its full payment, more than 30 days before the first day of the session.

* This offer is valid for public training sessions only and cannot be cumulated with any other promotional rate.

> Document sans titre