ISO/IEC 27035 - Introduction


This one-day training course enables participants to be familiar with the basic concepts of the implementation and management of an incident management process as specified in ISO/IEC 27035. Apart from understanding the ISO/IEC 27035 information security incident management standard, participants will gain information on a process model for designing and developing an organizational incident management process.


Who should attend?

  • Members of an Information Security Risk Management team
  • Regulatory Compliance Managers
  • Members of an Incident Response Team
  • Persons responsible for information security or conformity within an organization
  • Business Continuity Managers
  • Security and Business Process consultants


Learning objectives

  • To understand the concepts, approaches, methods, tools and techniques allowing an effective information security incident management according to ISO/IEC 27035
  • To understand, interpret and provide guidance on how to implement and manage incident management processes based on best practices of ISO/IEC 27035 and other relevant standards
  • To acquire the necessary knowledge to contribute in implementing an ongoing information security incident management program according to ISO/IEC 27035


Course agenda

  • Introduction to Information Security Incident Management
  • ISO/IEC 27035 core processes
  • Fundamental principles of information security
  • Understanding the interrelationships between ISO/IEC 27035 and the other information security standards (ISO/IEC 27001 and ISO/IEC 27002)
  • Linkage to business continuity
  • The Organizational Incident Management Process based on ISO/IEC 27035
  • Initiating a Security Incident Management Process
  • Understanding the stages of the ISO/IEC 27035 certification process




Examination and Certification


General information

  • A student manual containing over 100 pages of information and practical examples will be distributed to participants
  • Participation certificate of 7 CPD (Continuing Professional Development) will be issued to participants