Information Security Management System Lead Implementer Training Program

COURSE SCHEDULE

21/22/28/29 March 2026
18/19/25/26 April 2026

Note: If your preferred training date is not visible, please reach out to us by filling up the form.

YOUR BENEFITS

• Globally recognized TÜV SÜD certificate on course completion
• Deeper insights into ISO/IEC 27001:2022 international standard requirements in conjunction with ISO/IEC 27002 and ISO/IEC 27003
• Basic understanding of the standard requirements for risk assessment and risk treatment process, which is aligned with ISO 31000
• Mandatory documentation required by the standard
• Implementation phases and the responsibilities of an implementer
• Equip yourself with the necessary knowledge and skills to implement an effective ISMS in an organization.
• Networking opportunities with peers from varied backgrounds

COURSE OUTLINE

• Day 1:
  • ISMS overview - definitions, information security concepts & history of ISMS
  • Benefits and purpose of Information Security Management System (ISMS)
  • Changes in the requirements of ISO/IEC 27001 clauses and controls
  • Understanding ISO/IEC 27001 framework requirements
• Day 2:
  • Risk assessment and treatment process
  • Understanding ISO/IEC 27001 Annex A control requirements
• Day 3:
  • Formulating ISMS scope statement
  • Formulating IS policy and objectives
  • Preparing SoA (Statement of Applicability)
  • ISMS documentation
• Day 4:
  • Incident management process
  • Internal audit planning and requirements
  • Management review requirements
  • Continual improvement process
  • Final examination

Note: Exercises, assignments, group discussions, and case studies will be spread across all days

• Assist in establishing the internal audit program and management reviews within an organisation
• Understanding controls listed in Annex A of the standard and knowledge of implementing correct type of controls to mitigate risks

WHO SHOULD ATTEND?

• Professionals who are interested in implementing an effective information security management system framework within an organisation
• Personnel who want to pursue a career as an implementer in information security management system.
• Project managers or consultants responsible for establishing, implementing, maintaining, auditing and improving Information Security Management Systems within an organisation
• Top Management (IT Head, CISO etc.) and Senior Managers responsible for the IT governance of an enterprise and the management of its risks

TRAINING DURATION

5 days

PREREQUISITES

Knowledge on ISMS would be an added advantage.

EXAM DETAILS

Candidates will be assessed by the following 2 methods:

• Continuous assessment: This includes assessment throughout the course for punctuality, presentation skills, interactive approach, involvement, role-play, classroom exercises, assignments etc.
• Written examination (open book): This will be at the end of the course.
• Duration of the written exam is 120 minutes. Minimum passing criteria is 70% in both continuous assessment and online examination.

CERTIFICATION

Candidates who scores 70% and above in both the continuous assessment and written examination will be issued a TÜV SÜD certificate. Unsuccessful candidates will be issued a certificate of attendance.