We are happy to advise you!
+386 1 320 78 80     Contact

ISO/IEC 27002 Foundation (ISMS272F)


Course Overview

The ISMS Foundation course provides participants with the opportunity of acquiring the basic knowledge related to the management of an Information Security Management System based on ISO 27001: risk management (based on ISO 27005), risk management plan, implementation, surveillance, re-examination and operation of an ISMS, continuous improvement of information security, management’s commitment, follow-up and review as well as an introduction to ISO 27001 audit certification.

In addition, the participant will acquire basic knowledge of the best practices in the implementation of information security control measures based on the eleven (11) ISO 27002 domains: security policy, organization of information security, asset management, human resources security, physical and environmental security, communications and operations management, access control, information systems acquisition, development and maintenance, information security incident management, business continuity management and compliance.

Benefits for company:

  • Promotes a security-conscious company culture
  • Learning practical skills for handling confidential information
  • Set up, implement and monitor plans for information security in-house
  • Working in compliance with the ISO/IEC 27002 security guidelines
  • Being able to respond to legislation and regulations

Who should attend

  • Technician, auditor, consultant or any person wanting to familiarize themselves with ISO 27002 to implement information security control measures
  • Information security team member
  • Expert advisor in information technology


There are no formal criteria or pre-requisites for candidates wishing to attend this course, though some familiarity with information security is strongly recommended.

Course Objectives

  • Understanding the application of the information security management system in the ISO 2701 context
  • Understanding the relationship between the information security management system, including the management of risks and controls, and the various stakeholders
  • Introduction to the 14 domains and 114 control measures of ISO27002
  • Acquiring basic knowledge of the best practices for implementing information security control measures
Classroom Training
Modality: G

Duration 2 days

Currently there are no training dates scheduled for this course.