Master the Information Security Incident Management based on ISO/IEC 27035

ISO/IEC 27035 Lead Incident Manager

Course Overview

Why should you attend?

ISO/IEC 27035 Lead Incident Manager training enables you to acquire the necessary expertise to support an organization in implementing an Information Security Incident Management plan based onĀ ISO/IEC 27035. During this training course, you will gain a comprehensive knowledge of a process model for designing and developing an organizational incident management plan. The compatibility of this training course with ISO/IEC 27035 also supports the ISO/IEC 27001 by providing guidance for Information Security Incident Management.

After mastering all the necessary concepts of Information Security Incident Management, you can sit for the exam and apply for a Certified ISO/IEC 27035 Lead Incident Manager credential. By holding a Lead Incident Manager Certificate, you will be able to demonstrate that you have the practical knowledge and professional capabilities to support and lead a team in managing Information Security Incidents.

Who should attend?

  • Information Security Incident managers
  • IT Managers
  • IT Auditors
  • Managers seeking to establish an Incident Response Team (IRT)
  • Managers seeking to learn more about operating effective IRTs
  • Information Security risk managers
  • IT system administration professionals
  • IT network administration professionals
  • Members of Incident Response Teams
  • Individuals responsible for Information Security within an organization

Learning objectives

  • Master the concepts, approaches, methods, tools and techniques that enable an effective Information Security Incident Management according to ISO/IEC 27035
  • Acknowledge the correlation between ISO/IEC 27035 and other standards and regulatory frameworks
  • Acquire the expertise to support an organization to effectively implement, manage and maintain an Information Security Incident Response plan
  • Acquire the competence to effectively advise organizations on the best practices of Information Security Incident Management
  • Understand the importance of establishing well-structured procedures and policies for Incident Management processes
  • Develop the expertise to manage an effective Incident Response Team

Educational approach

  • This training is based on both theory and best practices used in the implementation of an Information Security Incident Management plan
  • Lecture sessions are illustrated with examples based on case studies
  • Practical exercises are based on a case study which includes role playing and discussions
  • Practice tests are similar to the Certification Exam

Prerequisites

A fundamental understanding of ISO/IEC 27035 and comprehensive knowledge of Information Security.

Course Agenda

Course agenda

Day 1: Introduction to Information Security Incident Management concepts as recommended by ISO/IEC 27035

Day 2: Designing and preparing an Information Security Incident Management plan

Day 3: Enacting the Incident Management process and handling Information Security incidents

Day 4: Monitoring and continual improvement of the Information Security Incident Management plan

Day 5: Certification Exam

Examination

Examination

The Certified ISO/IEC 27035 Lead Incident Manager exam fully meets the requirements of the Examination and Certification Programme (ECP). The exam covers the following competency domains:

Domain 1: Fundamental principles and concepts of Information Security Incident Management

Domain 2: Information Security Incident Management best practices based on ISO/IEC 27035

Domain 3: Designing and developing an Organizational Incident Management process based on ISO/IEC 27035

Domain 4: Preparing for Information Security incidents and implementing an Incident Management Plan

Domain 5: Enacting the Incident Management Process and handling Information Security Incidents

Domain 6: Performance measurement and monitoring

Domain 7: Improving the Incident Management processes and activities

For more information about exam details, please visit Examination Rules and Policies

Certification

After successfully completing the exam, you can apply for the credentials shown on the table below. You will receive a certificate once you comply with all the requirements related to the selected credential. For more information about ISO/IEC 27035 certifications and the certification process, please refer to the Certification Rules and Policies.

The requirements for Manager Certifications are:

Credential

Exam

Professional

experience

ISIMMS project experience

 Other requirements

Certified ISO/IEC 27035 Provisional Incident Manager

Certified ISO/IEC 27035 Lead Incident Manager exam or equivalent

None

None

 Signing the code of ethics
Certified ISO/IEC 27035 Incident Manager Certified ISO/IEC 27035 Lead Incident Manager exam or equivalent Two years: One year of Incident Management work experience Project activities totaling 200 hours Signing the code of ethics
Certified ISO/IEC 27035 Lead Incident Manager Certified ISO/IEC 27035 Lead Incident Manager exam or equivalent Five years: Two years of Incident Management work experience Project activities totaling 300 hours Signing the code of ethics
Certified ISO/IEC 27035 Senior Lead Incident Manager Certified ISO/IEC 27035 Lead Incident Manager exam or equivalent Ten years: Seven years of Incident Management work experience Project activities totaling 1000 hours Signing the code of ethics

To be considered valid, these Information Security Incident Management activities should follow best implementation and management practices and include the following

  1. Drafting an Information Security Incident Management plan
  2. Implementing Information Security Incident Management processes
  3. Managing Information Security Incident processes
  4. Conducting forensics investigation
  5. Monitoring and analyzing security events
  6. Identifying potential threats and security trends
  7. Vulnerabilities assessment
  8. Monitoring and managing risks
  9. Implementing corrective or preventive actions
  10. Performing internal controls
  11. Managing an Incident Response Team

General Information

General Information

  • Certification fees are included on the exam price
  • Training material containing over 450 pages of information and practical examples will be distributed
  • A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
  • In case of exam failure, you can retake the exam within 12 months for free

ISO 27035

Related posts

26 Agosto 2020

ISO/IEC 27035 Foundation

Read more
26 Agosto 2020

ISO/IEC 27035 Introduction

Read more
27 Luglio 2017

ISO/IEC 27035 Incident Management Introduction

Read more
P.IVA: 10592481005
Codice Destinatario: SZLUBAI

Address: Via Luigi Lilio, 62 00142 Roma RM, Italy
B Line Underground - Laurentina station

email: info@sscsrl.com
PEC: sscsrl@pec.sscsrl.com

Phone: +39 0696842731
Fax: +39 0696842732

Signup to our Newsletter!

You will always be updated on news
and courses of our company

Credits: DigitalSense.it

Signup to our Newsletter

Signup to our Newsletter!

You will always be updated on news
and courses of our company

Signup to our Newsletter!

You will always be updated on news and courses of our company