Se rendre au contenu

EN - Self study - PECB Certified ISO 27035 Lead Incident Manager

https://www.brainframe.com/web/image/product.template/101/image_1920?unique=852bdf0

Master the implementation and management of information security incident management processes based on ISO/IEC 27035


599,00 599.0 USD 599,00 Tax Excluded / Board Member

599,00 € Tax Excluded / Board Member

Not Available For Sale

    Cette combinaison n'existe pas.

    Self study with PDF English Continuity, Resilience, and Recovery


    What is included?

    • You have 12 months time as of reception of the learning material to learn, do the exam and get your certification
    • Certification and examination fees are included in the price of the training course. 
    • Participants will receive the training course material containing over 450 pages of explanatory information, examples, best practices, exercises, and quizzes. 
    • An Attestation of Course Completion worth 31 CPD (Continuing Professional Development) credits will be issued to the participants who have attended the training course. 
    • If candidates fail the exam, they can retake it within 12 months following the initial attempt for free.
    • + 20% reduction on the first year subscription for our all-in-one ISMS/GRC management solution

    Why should you take this training course?

    Whether deliberate or accidental, information security incidents are almost inevitable in the digital age, impacting organizations of all sizes and sectors. Learning to navigate the complexities of information security incident detection, assessment, response, and reporting allows participants to assist organizations in ensuring the safety of their information and reducing negative business consequences.

    This training course aligns with ISO/IEC 27001, ISO/IEC 27005, and other standards in the ISO/IEC 27000 series and provides practical guidance on information security.

    Upon completing the course and its exam, participants can apply for the "PECB Certified ISO/IEC 27035 Lead Incident Manager" credential, showcasing their proficiency in strategically and effectively managing and mitigating information security incidents.


    Who should attend?

    This training course is intended for: 

    • Managers or consultants seeking to expand their knowledge of information security incident management
    • Professionals seeking to establish and manage effective incident response teams (IRTs)
    • IT professionals and information security risk managers seeking to enhance their knowledge in information security incident management
    • Members of incident response teams
    • Incident response coordinators or other roles with responsibilities for incident handling and response 


    Training course structure

    Module 1: Introduction to Information Security Incident Management and ISO/IEC 27035

    • Training course objectives and structure
    • Standards and regulatory frameworks
    • Fundamental concepts of incident management
    • Information security incident management
    • Context establishment
    • Policies and procedures

    Module 2: Designing and preparing an Information Security Incident Management plan

    • Risk management
    • Incident management plan
    • Incident management team
    • Internal and external relationships
    • Technical and other support
    • Information security incident awareness and training

    Module 3: Detecting and reporting information security incidents

    • Testing
    • Monitor systems and networks
    • Detect and alert
    • Information collection for incidents
    • Report information security events
    • Information security event assessment

    Module 4: Monitoring and continual improvement of the information security incident management process

    • Resolve information security incidents
    • Containment, eradication, and recovery
    • Lessons learned
    • Monitoring, measurement, analysis, and evaluation
    • Continual improvement
    • Closing of the training course

    Certification Exam


    Learning objectives

    After completing this training course, you will be able to:

    • Explain the fundamental principles of incident management
    • Develop and implement effective incident response plans tailored to the organization's needs and select an incident response team
    • Conduct thorough risk assessments to identify potential threats and vulnerabilities within an organization
    • Apply good practices from various international standards to enhance the efficiency and effectiveness of incident response efforts
    • Conduct post-incident analysis and identify lessons learned


    Examination

    The “PECB Certified ISO/IEC 27035 Lead Incident Manager” exam meets the PECB Examination and Certification Program (ECP) requirements. It covers the following competency domains:

    • Domain 1: Fundamental principles and concepts of information security risk management
    • Domain 2: Information security incident management process based on ISO/IEC 27035
    • Domain 3: Designing and developing an organizational incident management process based on ISO/IEC 27035
    • Domain 4: Preparing and executing the incident response plan for information security incidents
    • Domain 5: Implementing incident management processes and managing information security incidents
    • Domain 6: Improving the incident management processes and activities

    Duration: 3 hours
    Location: Online through the PECB app OR in person in one of the PECB exam centers
    Preparation: PECB Exam Preparation Guides
    Language
    : The exam is available in multiple other languages and does not need to be taken in the same language as the training material. Additional time can be requested when your native language is not available in your mother tongue (to be requested by candidates on the exam day)
    Retake: In case you fail the exam, you can retake it within 12 months following the initial attempt for free

    For specific information about the exam type, languages available, and other details, please visit the List of PECB Exams and the Examination Rules and Policies.

    Certification

    After passing the exam, you can apply for one of the credentials listed in the table below. You will receive a certification once you fulfill all the requirements of the selected credential.

    CredentialExamProfessional experienceISIMMS project experienceOther requirements
    PECB Certified ISO/IEC 27035 Provisional Incident ManagerPECB Certified ISO/IEC 27005 Lead Risk Manager Exam or equivalentNoneNoneSigning the PECB Eode of Ethics
    PECB Certified ISO/IEC 27035 Incident ManagerPECB Certified ISO/IEC 27005 Lead Risk Manager Exam or equivalentTwo years: One year of work experience in Information Security Incident ManagementISIM activities: a total of 200 hoursSigning the PECB Code of Ethics
    PECB Certified ISO/IEC 27035 Lead Incident ManagerPECB Certified ISO/IEC 27005 Lead Risk Manager Exam or equivalentFive years: Two years of work experience in Information Security Incident ManagementISIM activities: a total of 300 hoursSigning the PECB Code of Ethics
    PECB Certified ISO/IEC 27035 Senior Lead Incident ManagerPECB Certified ISO/IEC 27005 Lead Risk Manager Exam or equivalentTen years: Seven years of work experience in Information Security Incident ManagementISIM activities: a total of 1,000 hoursSigning the PECB Code of Ethics

    The incident management project experience should follow best implementation practices and include the following:

    1. Defining an incident management approach
    2. Determining the risk management objectives and scope
    3. Performing risk assessment
    4. Developing an incident management program
    5. Defining risk evaluation and risk acceptance criteria
    6. Evaluating risk treatment options
    7. Monitoring and reviewing the risk management program

    Note: For more information about ISO/IEC 27005 certifications and the PECB Certification process, please refer to Certification Rules and Policies.

    Contact us on [email protected] if you have other questions    


    Start for free now! 

    Streamline your GRC work using our all-in-one management solution and get access to our network of local specialists

    Start your free account