Information Security Management Professional based on ISO/IEC 27001

Information is crucial for the continuity and proper functioning of both individual organizations and the economies they fuel; this information must be protected against access by unauthorized people, protected against accidental or malicious modification or destruction and must be available when it is needed. The module Information Security Management Professional based on ISO/IEC 27001 tests understanding of the organizational, physical and technical aspects of information security.

Who is this certification for?

This module is intended for everyone who is involved in the implementation, evaluation, and reporting of an information security program, such as an Information Security Manager (ISM), Information Security Officer (ISO) or a Line Manager, Process Manager or Project Manager with security responsibilities. Basic knowledge of Information Security is recommended, for instance through the EXIN Information Security Foundation based on ISO/IEC 27001 certification.

Main subjects

• Information security perspectives: the perspectives of the business, the customer, and the service provider
• Risk Management: Analysis of the risks, choosing controls, dealing with remaining risks
• Information security controls: Organizational, technical and physical controls

Exam Details

• Duration: 1 hour and 30 minutes
• Number of questions: 30 (Multiple Choice) 
• Pass mark: 65% 
• Open book: No 
• Electronic equipment allowed: No 
• Level: Advanced 
• Available languages: English, Dutch, Brazilian Portuguese
• Requirements: The Information Security Management Professional training course with an EXIN accredited training provider (ATP), including having successfully fulfilled the two (2) practical assignments as part of the course.

Navštivte kurz