Information Security Management based on ISO/IEC 27001

Competency

Information Security Management based on ISO/IEC 27001

This competency provides an introduction to ISO/IEC 27001, starting with the fundamentals of an information security management system (ISMS) and progressing through the initial stages of planning and early implementation.

5 Trainers

About

Course Overview:

This competency introduces the foundational concepts of information security management in accordance with ISO/IEC 27001. It explains the value of information as an organizational asset, the structure and purpose of an ISMS, and the early phases of implementation—from leadership commitment and project approval to risk management, operational controls, and incident handling. Learners gain clarity on key ISO/IEC 27001 clauses, essential security principles, and the practical steps needed to begin establishing an effective ISMS.

What You'll Learn:

Core principles of information security and why information is a critical organizational asset
How ISO/IEC 27001 defines an information security management system (ISMS)
How to identify vulnerabilities, risks, and key information security concepts
How to interpret ISMS-related clauses within ISO/IEC 27001
How to plan early ISMS activities, including leadership involvement and competence
How to conduct analysis of existing systems and identify required improvements
How information security risk management supports ISMS implementation
How to apply organizational, people, physical, and technological controls

Who Should Take This Course?

Individuals new to ISO/IEC 27001 or information security management
Professionals beginning ISMS implementation within their organization
IT, cybersecurity, and data protection practitioners responsible for foundational security practices
Managers supporting early ISMS planning, leadership engagement, or resource allocation
Employees involved in information security risk assessment or operational security tasks
Organizations preparing to initiate ISO/IEC 27001 alignment or certification efforts

What You'll Get:

1 CPD per module (total 4)
Certification upon completion
A foundational understanding of ISO/IEC 27001 and ISMS concepts
Knowledge of key security principles, risks, and operational practices
Early-stage ISMS planning and implementation insights
Practical understanding of initial security controls across organizational, human, physical, and technological domains

Module 1

Information Security 101: Getting Started with an ISMS

Introduction to Information Security (14 mins)
Understanding Vulnerabilities, Risks, and Threats (15 mins)
What Is an ISMS Based on ISO/IEC 27001? (14 mins)
Navigating an ISMS through Clauses of ISO/IEC 27001 (14 mins)

Take the Practice Quiz

Module 2

ISMS Planning and Early Implementation

Leadership and Project Approval (14 mins)
Competence and Awareness (15 mins)
Analysis of the Existing System (15 mins)
Keeping Data Safe: Information Security Foundations (14 mins)

Take the Practice Quiz

Module 3

Information Security Risk and Key Operations

Information Security Risk Management (14 mins)
Information Security Risk Management (Continuation) (14 mins)
Changes, Resource Management, and Security Operations (15 mins)
Incident Management (14 mins)

Take the Practice Quiz

Module 4

Implementation of Information Security Controls

Organizational Controls (14 mins)
People and Physical Controls (14 mins)
Technological Controls (Part I) (14 mins)
Technological Controls (Part II) (14 mins)

Take the Practice Quiz

Specialization · 4 modules

Watch Now

4 Modules

100% Positive Reviews (48 reviews)

105 Lessons (4h 05m)

650 Languages Available: Spanish, English, German, French

Exam

Certificate upon completion of the course

About the Trainer

Rinske Geerlings

Risk, Business Continuity, and Information Security Expert

Rinske Geerlings is a renowned consultant, speaker, and certified trainer with over 20 years of global experience in Business Continuity, Information Security, Crisis Management, Disaster Recovery, and Risk Management. She has worked with Central Banks, government entities, and major global corporations, and has been recognized with awards including Risk Consultant of the Year. As Managing Director of Business As Usual (Australia), she drove significant growth while delivering ISO-based professional certifications. Rinske is known for her practical strategies, authenticity, and commitment to empowering professionals worldwide.