Why should you attend?
ISO 27799 Lead Manager training enables you to acquire the necessary expertise to support an organization in implementing and managing Information Security controls based on ISO 27799 and ISO/IEC 27002. During this training course, you will also gain a comprehensive knowledge of the best practices of Information Security Controls and how to improve Information Security within a healthcare organization. Additionally, this training enables you to develop the necessary expertise to support healthcare organizations in establishing, implementing, managing and maintaining an Information Security Management System (ISMS). Furthermore, during this training you will learn the complex and different factors that should be taken into account when dealing with information security issues within a healthcare organization.
After mastering all the necessary concepts of Information Security Controls, you can sit for the exam and apply for a Certified ISO 27799 Lead Manager credential. By holding a Lead Manager Certificate, you will be able to demonstrate that you have the practical knowledge and professional capabilities to support and lead a team in implementing and managing Information Security Controls in healthcare organizations based on ISO 27799 and ISO/IEC 27002.
Who should attend?
- Managers or consultants seeking to implement an Information Security Management System (ISMS) based on ISO/IEC 27001, ISO/IEC 27002 and ISO 27799
- Project managers or consultants seeking to master the Information Security Management System implementation process in healthcare organizations
- Individuals responsible for Information Security, compliance, risk, and governance in a healthcare organization
- Information Security team members
- Expert advisors in information technology
- Information Security officers
- Information Security managers
- Privacy officers
- IT professionals
- CTOs, CIOs and CISOs
Learning objectives
- Master the implementation of Information Security controls in healthcare organizations by adhering to the framework and principles of ISO 27799 and ISO/IEC 27002
- Master the concepts, approaches, standards, methods and techniques required for the implementation and effective management of Information Security controls in healthcare organizations
- Comprehend the relationship between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behavior
- Understand the importance of Information Security for the strategy of a healthcare organization
- Master the implementation of Information Security management processes
- Master the expertise to support a healthcare organization to effectively implement, manage and maintain Information Security Controls
- Master the formulation and implementation of Information Security requirements and objectives
- Master the development and administration of a health information security program, including: policies, procedures, risk assessment, security architectures etc.
Course agenda
Day 1: Introduction to Information Security controls as recommended by ISO 27799 and ISO/IEC 27002
Day 2: Information Security requirements and objectives based on ISO 27799 and ISO/IEC 27002
Day 3: Monitoring, measurement, analysis, and evaluation of Information Security controls
Day 4: Continual improvement of an organization’s Information Security Management System performance
Day 5: Certification Exam
Examination
The Certified ISO 27799 Lead Manager exam fully meets the requirements of the Examination and Certification Programme (ECP). The exam covers the following competency domains:
Domain 1: Fundamental principles and concepts of Information Security
Domain 2: Information Security Controls based on ISO 27799 and ISO/IEC 27002
Domain 3: Planning and evaluation of the needs and applicability of Information Security Controls
Domain 4: Implementation and management of Information Security Controls
Domain 5: Monitoring and measurement of Information Security Controls
Domain 6: Continual improvement of Information Security Controls
For more information about exam details, please visit Examination Rules and Policies
Certification
After successfully completing the exam, you can apply for the credentials shown on the table below. You will receive a certificate once you comply with all the requirements related to the selected credential. For more information about ISO 27799 certifications and the certification process, please refer to the Certification Rules and Policies
The requirements for Lead Manager Certifications are:
|
Credential |
Exam |
Professional experience |
ISHMS project experience |
Other requirements |
|
Certified ISO 27799 Provisional Manager |
Certified ISO 27799 Manager exam or equivalent |
None |
None |
Signing the Code of Ethics |
|
Certified ISO 27799 Manager |
Certified ISO 27799 Manager exam or equivalent |
Two years: One year of work experience in Information Security Management |
Information Security Management activities: a total of 200 hours |
Signing the Code of Ethics |
|
Certified ISO 27799 Lead Manager |
Certified ISO 27799 Lead Manager exam or equivalent |
Five years: Two years of work experience in Information Security Management |
Information Security Management activities: a total of 300 hours |
Signing of the Code of Ethics |
|
Certified ISO 27799 Senior Lead Manager |
Certified ISO 27799 Lead Manager exam or equivalent |
Ten years: Seven years of work experience in Information Security Management |
Information Security Management activities: a total of 1000 hours |
Signing of the Code of Ethics |
General Information
- Certification fees are included on the exam price
- Training material containing over 500 pages of information and practical examples will be distributed
- A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
- In case of exam failure, you can retake the exam within 12 months for free