Talk to us


We are experts in IT and Business management trainings. We are passionate about helping our clients achieve their goals!

ISO/IEC 27002 Foundation

Difficulty level: Duration in days: Delivery options:


Classroom based

  • The ISMS Foundation course provides participants with the opportunity of acquiring the basic knowledge related to the management of an Information Security Management System based on ISO 27001: risk management (based on ISO 27005), risk management plan, implementation, surveillance, re-examination and operation of an ISMS, continuous improvement of information security, management’s commitment, follow-up and review as well as an introduction to ISO 27001 audit certification.

    In addition, the participant will acquire basic knowledge of the best practices in the implementation of information security control measures based on the eleven (11) ISO 27002 domains: security policy, organization of information security, asset management, human resources security, physical and environmental security, communications and operations management, access control, information systems acquisition, development and maintenance, information security incident management, business continuity management and compliance.

    Benefits for company:

    • Promotes a security-conscious company culture
    • Learning practical skills for handling confidential information
    • Set up, implement and monitor plans for information security in-house
    • Working in compliance with the ISO/IEC 27002 security guidelines
    • Being able to respond to legislation and regulations

    • Understanding the application of the information security management system in the ISO 2701 context
    • Understanding the relationship between the information security management system, including the management of risks and controls, and the various stakeholders
    • Introduction to the 14 domains and 114 control measures of ISO27002
    • Acquiring basic knowledge of the best practices for implementing information security control measures
    • Technician, auditor, consultant or any person wanting to familiarize themselves with ISO 27002 to implement information security control measures
    • Information security team member
    • Expert advisor in information technology
  • There are no formal criteria or pre-requisites for candidates wishing to attend this course, though some familiarity with information security is strongly recommended.
    • Duration: 1 hour
    • Number of questions: 40 (Multiple Choice)
    • Pass mark: 65%
    • Open book: No
  • There are no events in the selected category

Course Contents

  • You’ll be introduced to the ISO 27000 family of standards and study:
    • Information security fundamentals
    • How to conduct an ISO/IEC 27001 certification audit
    • Design of information security controls based on ISO 27002 best practices
    • Threat and Risk
    • The relationship between Threats, Risks and the Reliability of Information
    • Risk approach
    • Risk Levles
    • Security policy and security organisation
    • Components of the security organisation
    • Security incident management
    • Importance of measures
    • Physical security meaasures
    • Technical security measures
    • Organisational measures
  • Compliance management with active legislation and regulation.

Discover. Learn. Become.


Discover and explore what you wish to learn and what knowledge will help you boost your career.


Attend on our classroom based or on-line self paced training to gain needed experience and knowledge to fill the gap.


Become certified professional with world's leading and recognised certificates to showcase your competencies.

Talk to us

+386 1 2425 866

We use cookies on our website. Some of them are essential for the operation of the site, while others help us to improve this site and the user experience (tracking cookies). You can decide for yourself whether you want to allow cookies or not. Please note that if you reject them, you may not be able to use all the functionalities of the site.