ISO/IEC 27035 INCIDENT MANAGER

Why should you attend?

ISO/IEC 27035 Incident Manager training enables you to acquire the necessary knowledge to support an organization in implementing an Information Security Incident Management plan based on ISO/IEC 27035. During this training course, you will also gain a thorough understanding of best practices used to manage Information Security Incidents.

After understanding all the necessary concepts of Information Security Incident Management, you can sit for the exam and apply for a “Certified ISO/IEC 27035 Incident Manager” credential. By holding an Incident Manager Certificate, you will be able to demonstrate that you have the necessary skills and knowledge to manage Information Security incidents.

Who should attend?

• Information Security Incident managers
• Individuals responsible for Incident Response in an organization
• Information Security team members
• IT Managers
• IT system administration professionals
• IT network administration professionals
• IT auditors
• Members of Incident Response Teams

Learning objectives:

• Acknowledge the correlation between ISO/IEC 27035 and other standards and regulatory frameworks
• Understand the implementation of an Information Security Incident Management plan
• Gain a comprehensive understanding of the concepts, approaches, standards, methods, and techniques related to Information Security Incident Management
• Develop the expertise to support an organization to effectively implement, manage and maintain an Information Security Incident Response plan

Certification:

Course duration: 3 Days

Course Agenda:

1. Introduction to Information Security Incident Management concepts as recommended by ISO/IEC 27035
   
   • Course objectives and structure
     
   • Standards and regulatory frameworks
     
   • Information Security Incident Management
     
   • ISO/IEC 27035 core processes
     
   • Fundamental principles of Information Security
     
   • Legal and ethical issues
     
2. Information Security Incident Management phases according to ISO/IEC 27035
   
   • Initiating an Information Security Incident Management process
     
   • Understanding the organization and clarifying the information security incident management objectives
     
   • Plan and prepare
     
   • Roles and functions
     
   • Policies and procedures
     
   • Communication planning
     
3. Implementing an Information Security Incident Management Plan and Certification Exam
   
   • First implementation steps
     
   • Implementation of support items
     
   • Detecting and reporting
     
   • Assessment and decision
     
   • Responses
     
   • Lessons learned
     
   • Transition to operations
     
   • Closing the training
     

Examination: 3 Hours

The “Certified ISO/IEC 27035 Incident Manager” exam fully meets the requirements of the Examination and Certification Programme (ECP).

The exam covers the following competency domains:

1. Domain 1 Fundamental principles and concepts of Information Security Incident Management
   
2. Domain 2 Information Security Incident Management plan implementation based on ISO/IEC 27035
   
3. Domain 3 Enacting the incident management process and handling Information Security Incidents