ISO/IEC 27005 Foundation training course provides information on the fundamental concepts and principles of information security risk management based on ISO/IEC 27005.
Why should you attend?
ISO/IEC 27005 Foundation is a two-day training course that focuses on the information security risk management process introduced by ISO/IEC 27005 and the structure of the standard. It provides an overview of the guidelines of ISO/IEC 27005 for managing information security risks, including context establishment, risk assessment, risk treatment, communication and consultation, recording and reporting, and monitoring and review.
After attending the training course, you can sit for the exam. If you successfully pass the exam, you can apply for the “PECB Certificate Holder in ISO/IEC 27005 Foundation” designation. This certificate demonstrates that you have a general knowledge of ISO/IEC 27005 guidelines for information security risk management.
Who can attend?
The ISO/IEC 27005 Foundation training course is intended for:
- Risk management professionals
- Professionals wishing to get acquainted with the guidelines of ISO/IEC 27005 for information security risk management
- Personnel tasked with managing information security risks in their area of responsibility
- Individuals interested in pursuing a career in information security risk management
Prerequisites
There are no prerequisites to participate in this training course.
Course agenda
DAY 1 | Introduction to fundamental concepts of Risk Management related to Information Security by using ISO/IEC 27005
DAY 2 | Information Security Risk Management approaches and Certification Exam
Training material
The participant will receive training materials containing more than 200 pages of information and practical examples in electronic form via the KATE application. As part of the full-time course, the participant will also receive training materials in printed form.
Examination
The “PECB Certified ISO/IEC 27005 Foundation” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:
- DOMAIN 1 | Fundamental principles and concepts of Risk Management in Information Security
- DOMAIN 2 | Information Security Risk Management approaches and processes
For specific information about exam type, languages available, and other details, please visit the List of PECB Exams and the PECB Examination Rules and Policies.
Price
The price includes participation in the course, electronic training materials, exam and PECB certification fees. The price of the full-time course also includes a printed copy of the training material, lunch on teaching days and small refreshments.
Certificate requirements
First, a candidate needs to complete the PECB ISO/IEC 27005 Foundation training course. Then, they need to take the exam and after successfully passing the exam, candidates will be able to apply for the “PECB Certificate Holder in ISO/IEC 27005 Foundation” certificate. This is an entry-level credential.
There are no prerequisites on professional or risk management project experience required. Thus, following the training course, passing the exam and applying for the certificate are the only certificate program requisites that certificate holders shall meet before obtaining the certificate.
For more information, please refer to the PECB Certification Rules and Policies.
The certificate requirements are:
