PECB ISO/IEC 27035 Foundation Training Course

By participating in the PECB CISO training course, you will acquire the essential expertise to oversee and manage information security. This includes implementing robust security measures, identifying and mitigating information security risks, and developing effective security strategies tailored to the organization's specific needs.

This instructor-led live training, delivered Brazil (online or onsite), is designed for beginner-level quality assurance professionals, regulatory compliance staff, medical device engineers, and other medical device manufacturing professionals seeking a foundational grasp of ISO 13485. This knowledge empowers them to implement and maintain a compliant quality management system while ensuring their organizations achieve regulatory compliance.

By the conclusion of this training, participants will be able to:

• Understand the structure, purpose, and requirements of ISO 13485:2016.
• Learn about the quality management principles specific to medical devices.
• Gain insights into key processes and documentation required for compliance.
• Understand the steps to implement and maintain an ISO 13485 quality management system (QMS).

Why should you attend?

This training course is designed to help participants understand the fundamental concepts and principles of a business continuity management system (BCMS) based on ISO 22301. By attending this training course, participants will learn more about the structure and requirements of the standard including the BCMS policy, the top management’s commitment, internal audit, management review, and continual improvement process.

After attending the training course, you can sit the exam and, if you successfully pass it, you can apply for the “PECB Certificate Holder in ISO 22301 Foundation” credential. A PECB Foundation certificate shows that you have knowledge on the fundamental concepts, principles, methodologies, requirements, framework, and management approach used in business continuity.

Who should attend?

• Individuals involved in business continuity
• Individuals seeking to gain knowledge about the main processes of business continuity management systems (BCMS)
• Individuals interested to pursue a career in business continuity

Learning objectives

• Acknowledge the correlation between ISO 22301 and other standards and regulatory frameworks
• Understand the components and the operation of a BCMS based on ISO 22301 and its principal processes
• Understand the concepts, approaches, methods, and techniques used for the implementation and management of a BCMS

Educational approach

• Lecture sessions include discussion questions and examples.
• The exercises include multiple-choice quizzes.
• The participants are encouraged to intercommunicate and engage in discussion and the completion of quizzes.
• Quizzes are similar to the certificate exam.

The ISO 22301 Introduction training course enables you to comprehend the basic concepts of a Business Continuity Management System (BCMS).

By attending the ISO 22301 Introduction course, you will understand the importance of a Business Continuity Management System and the benefits that businesses, society and governments can obtain.

Who should attend?

• Individuals interested in Business Continuity Management
• Individuals seeking to gain knowledge about the main processes of a Business Continuity Management System (BCMS)

Learning objectives

• Understand the concepts, approaches, methods, and techniques used to implement a Business Continuity Management System
• Understand the basic elements of a Business Continuity Management System

Upon completing the training course, you will be eligible to sit for the exam. If you successfully pass, you can apply for the “Certified ISO 22301 Lead Implementer” credential. This internationally recognized certificate demonstrates that you possess the professional expertise and practical knowledge required to implement a Business Continuity Management System (BCMS) in accordance with ISO 22301 standards within an organization.

Target Audience

• Project managers and consultants engaged in business continuity
• Expert advisors aiming to master the implementation of a business continuity management system
• Professionals responsible for ensuring organizational conformity with BCMS requirements
• Members of a BCMS team

Learning Objectives

• Develop a comprehensive understanding of the concepts, approaches, methods, and techniques used to implement and effectively manage a BCMS
• Learn to interpret and apply ISO 22301 requirements within the specific context of an organization
• Understand the operation of a business continuity management system and its processes as defined by ISO 22301
• Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and continually improving a BCMS

Educational Approach

• This training course combines theoretical foundations, implementation best practices, and ISO 22301 requirements essential for BCMS implementation.
• Lecture sessions are enhanced with practical exercises based on case studies, including role-playing and group discussions.
• Participants are encouraged to interact, engage in discussions, and participate in exercises.
• The exercises mirror the format of the certification exam.

General Information

• Certification fees are included in the exam price. After completing the course, you can book your exam.
• Participants will receive training materials containing over 450 pages of explanatory information and practical examples.
• An Attendance Record worth 31 CPD (Continuing Professional Development) credits will be issued to participants who attend the training course.
• Candidates who do not pass the exam may retake it within 12 months of the initial attempt at no additional cost.

Why should you attend?

The ISO/IEC 27001 Foundation training provides you with the essential knowledge to implement and manage an Information Security Management System (ISMS) in accordance with ISO/IEC 27001 standards. Throughout this course, you will gain a comprehensive understanding of the various components of an ISMS, including ISMS policy, procedures, performance metrics, management commitment, internal audits, management reviews, and the cycle of continual improvement.

Upon completion of this course, you will be eligible to take the exam and apply for the "PECB Certified ISO/IEC 27001 Foundation" credential. Holding a PECB Foundation Certificate demonstrates that you have mastered the fundamental methodologies, requirements, framework, and management approach necessary for information security.

Who should attend?

• Professionals involved in Information Security Management
• Individuals seeking to acquire knowledge about the core processes of Information Security Management Systems (ISMS)
• Those interested in pursuing a career in Information Security Management

Educational approach

• Lecture sessions are reinforced with practical questions and real-world examples
• Practical exercises feature case studies and group discussions
• Practice tests mirror the format and difficulty of the Certification Exam

The ISO/IEC 27002 Lead Manager training empowers you with the essential expertise and knowledge to support an organization in implementing and managing Information Security controls as outlined in ISO/IEC 27002.

Upon completing this course, you will be eligible to take the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. A PECB Lead Manager Certification demonstrates that you have mastered the principles and techniques for implementing and managing Information Security Controls based on ISO/IEC 27002.

Who should attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) based on ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants looking to master the Information Security Management System implementation process
• Individuals responsible for information security, compliance, risk, and governance within an organization
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• CTOs, CIOs, and CISOs

Learning objectives

• Master the implementation of Information Security controls by adhering to the framework and principles of ISO/IEC 27002
• Gain a comprehensive understanding of the concepts, approaches, standards, methods, and techniques required for the effective implementation and management of Information Security controls
• Comprehend the relationship between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behavior
• Understand the importance of information security for the organization’s strategy
• Master the implementation of information security management processes
• Master the formulation and implementation of security requirements and objectives

Educational approach

• This training is based on both theory and practice
• Sessions of lectures illustrated with examples based on real cases
• Practical exercises based on case studies
• Review exercises to assist exam preparation
• Practice test similar to the certification exam

General Information

• Certification fees are included in the exam price
• Training material containing over 500 pages of information and practical examples will be distributed to participants
• A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued to participants
• In case of exam failure, you can retake the exam within 12 months for free

The ISO/IEC 27005 Lead Risk Manager training program is designed to equip you with the essential expertise needed to assist organizations in managing risks related to all assets pertinent to Information Security. Utilizing the ISO/IEC 27005 standard as a reference framework, this course provides a comprehensive understanding of the process model required to design and develop an effective Information Security Risk Management program. Participants will also gain deep insights into best practices for risk assessment methodologies, including OCTAVE, EBIOS, MEHARI, and the harmonized TRA. Furthermore, this training supports the implementation of the ISMS framework outlined in the ISO/IEC 27001 standard.

Upon mastering the key concepts of Information Security Risk Management based on ISO/IEC 27005, you are eligible to take the exam and apply for the “PECB Certified ISO/IEC 27005 Lead Risk Manager” credential. Holding a PECB Lead Risk Manager Certificate demonstrates that you possess the practical knowledge and professional capabilities to support and lead teams in managing Information Security Risks.

Who should attend?

• Information Security risk managers
• Members of Information Security teams
• Individuals responsible for Information Security, compliance, and risk within an organization
• Those implementing ISO/IEC 27001, seeking compliance with ISO/IEC 27001, or involved in risk management programs
• IT consultants
• IT professionals
• Information Security officers
• Privacy officers

Examination - Duration: 3 hours

The “PECB Certified ISO/IEC 27005 Lead Risk Manager” exam fully complies with the requirements of the PECB Examination and Certification Programme (ECP). The assessment covers the following competency domains:

• Domain 1: Fundamental principles and concepts of Information Security Risk Management
• Domain 2: Implementation of an Information Security Risk Management program
• Domain 3: Information security risk assessment
• Domain 4: Information security risk treatment
• Domain 5: Information security risk communication, monitoring, and improvement
• Domain 6: Information security risk assessment methodologies

General Information

• Certification fees are included in the exam price
• Training material comprising over 350 pages of information and practical examples will be provided
• A participation certificate granting 21 CPD (Continuing Professional Development) credits will be issued
• In the event of an exam failure, you may retake the exam free of charge within 12 months

This training course teaches how risk assessment for information security is conducted by integrating information from ISO/IEC 27005:2022 and ISO/IEC 27001. In addition to theoretical knowledge, this training course includes practical exercises, quizzes, and case studies, making it a highly engaging learning experience.

Information security threats and attacks are constantly evolving and becoming more sophisticated. The most effective defense against these risks is the proper implementation and management of information security controls and best practices. Additionally, robust information security is a key expectation and requirement from customers, regulators, and other stakeholders.

This training course is designed to equip participants with the skills needed to implement an Information Security Management System (ISMS) based on ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and a framework for its ongoing management and improvement.

Upon completing the training course, you can take the associated exam. If you pass successfully, you may apply for the “PECB Certified ISO/IEC 27001 Lead Implementer” credential, demonstrating your ability and practical knowledge to implement an ISMS in accordance with the requirements of ISO/IEC 27001.

Who Can Attend?

• Project managers and consultants involved in or responsible for the implementation of an ISMS
• Expert advisors seeking to master ISMS implementation
• Individuals responsible for ensuring organizational conformity to information security requirements
• Members of an ISMS implementation team

General Information

• Certification fees are included in the exam price
• Training material, comprising over 450 pages of content and practical examples, will be provided
• A participation certificate awarding 31 CPD (Continuing Professional Development) credits will be issued
• In case of exam failure, you can retake the exam free of charge within 12 months

Educational Approach

• This training course includes essay-type exercises, multiple-choice quizzes, examples, and best practices relevant to ISMS implementation.
• Participants are encouraged to communicate and engage in discussions while completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes mirrors that of the certification exam.

Learning Objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for implementing and effectively managing an ISMS
• Recognize the relationship between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes as defined by ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 within the specific context of an organization
• Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

ISO 28000 Lead Implementer training empowers you with the expertise needed to assist an organization in establishing, implementing, managing, and maintaining a Supply Chain Security Management System (SCSMS) based on ISO 28000. Throughout this course, you will gain a deep understanding of Supply Chain Security Management System best practices, enabling you to enhance efficiency in handling potential security risks and their impacts within an organization’s supply chain.

After mastering the essential concepts of Supply Chain Security Management Systems, you may take the exam and apply for the “PECB Certified ISO 28000 Lead Implementer” credential. By obtaining a PECB Lead Implementer Certificate, you demonstrate that you possess the practical knowledge and professional capabilities to implement ISO 28000 within an organization.

Who should attend?

• Managers or consultants involved in Supply Chain Security Management
• Expert advisors looking to master the implementation of a Supply Chain Security Management System
• Individuals responsible for ensuring conformance with SCSMS requirements
• SCSMS team members

Learning objectives

• Understand the correlation between ISO 28000 and other standards and regulatory frameworks
• Master the concepts, approaches, methods, and techniques used for implementing and effectively managing an SCSMS
• Learn how to interpret ISO 28000 requirements within the specific context of an organization
• Learn how to support an organization in planning, implementing, managing, monitoring, and maintaining an SCSMS
• Acquire the expertise to advise an organization on implementing Supply Chain Security Management System best practices

Educational approach

• This training combines theory with best practices used in SCSMS implementation
• Lecture sessions are supported by examples from case studies
• Practical exercises are based on a case study, including role-playing and discussions
• Practice tests mirror the format of the Certification Exam

General Information

• Certification fees are included in the exam price
• Training material comprising over 450 pages of information and practical examples will be provided
• A participation certificate awarding 31 CPD (Continuing Professional Development) credits will be issued
• In the event of an exam failure, you may retake the exam within 12 months at no additional cost

ISO 37001:2025 is an international standard for Anti-Bribery Management Systems (ABMS) that outlines the requirements and guidance necessary to prevent, detect, and mitigate bribery risks within organizations of any size or sector.

This instructor-led live training, available both online and on-site, is designed for beginner to intermediate-level professionals seeking to comprehend and facilitate the implementation or auditing of an anti-bribery management system aligned with ISO 37001:2025.

Upon completion of this training, participants will be capable of:

• Grasping the structure and intent behind ISO 37001:2025.
• Applying anti-bribery requirements within practical organizational settings.
• Establishing and overseeing effective internal controls and reporting mechanisms.
• Assisting organizations in achieving regulatory compliance and upholding ethical integrity.

Course Format

• Interactive lectures and discussions.
• Real-world case studies and illustrative examples.
• Scenario-based exercises and collaborative group work.

Customization Options

• To request tailored training for this course, please contact us to make arrangements.

ISO 37301 is an international standard that outlines the requirements for establishing, developing, implementing, evaluating, maintaining, and improving an effective compliance management system (CMS).

This instructor-led live training (available online or onsite) targets beginner to intermediate professionals who want to understand, implement, or audit a compliance management system aligned with ISO 37301.

By the end of this training, participants will be able to:

• Comprehend the structure, purpose, and scope of ISO 37301.
• Implement the core components of a compliance management system (CMS).
• Identify compliance risks and opportunities throughout the organization.
• Integrate the ISO 37301 CMS with existing governance, risk, or ISO frameworks.

Course Format

• Interactive lectures and group discussions.
• Practical exercises and real-world case studies.
• Group activities and compliance scenario simulations.

Customization Options

• For customized training options, please contact us to arrange a tailored session.

The ISO/IEC 42001 Foundation training course provides you with the essential principles needed to establish and manage an artificial intelligence management system (AIMS) in compliance with ISO/IEC 42001. Designed to offer a comprehensive understanding, this course lays a robust groundwork for advancing your expertise in AIMS.

The ISO/IEC 42001 Lead Auditor training course provides you with the essential expertise to audit Artificial Intelligence Management Systems (AIMS) by applying widely recognized audit principles, procedures, and techniques.