PECB ISO/IEC 27005 Foundation Training Course

The ISO 22301 Introduction training course allows you to grasp the fundamental concepts of a Business Continuity Management System (BCMS).

By participating in the ISO 22301 Introduction course, you will recognize the significance of a Business Continuity Management System and the advantages that organizations, society, and government bodies can achieve.

Who is this course for?

• Individuals with an interest in Business Continuity Management
• Individuals looking to acquire knowledge about the core processes of a Business Continuity Management System (BCMS)

Learning outcomes

• Comprehend the concepts, methodologies, and techniques employed to implement a Business Continuity Management System
• Understand the foundational components of a Business Continuity Management System

Upon completion of this training course, you will be eligible to sit for the exam. If you successfully pass, you can apply for the 'Certified ISO 22301 Lead Implementer' credential. This internationally recognised certificate demonstrates your professional competence and practical expertise in implementing a Business Continuity Management System (BCMS) in accordance with ISO 22301 requirements within an organisation.

Who should attend?

• Project managers and consultants engaged in business continuity
• Expert advisors aiming to master the implementation of a business continuity management system
• Professionals responsible for maintaining organisational conformity with BCMS requirements
• Members of a BCMS team

Learning objectives

• Develop a comprehensive understanding of the concepts, approaches, methods, and techniques used to implement and effectively manage a BCMS
• Learn to interpret and apply ISO 22301 requirements within the specific context of an organisation
• Understand the operation of a business continuity management system and its processes as defined by ISO 22301
• Acquire the necessary knowledge to support an organisation in planning, implementing, managing, monitoring, and continually improving a BCMS

Educational approach

• This training course is grounded in theory, implementation best practices, and the ISO 22301 requirements essential for BCMS implementation.
• Lectures are reinforced with practical exercises based on a case study, incorporating role-playing and discussions.
• Participants are encouraged to interact with one another and actively engage in discussions and exercises.
• The exercises mirror the format of the certification exam.

General Information

• Certification fees are included in the exam price. After completing the course, you can book your exam.
• Participants will receive training materials comprising over 450 pages of explanatory content and practical examples.
• An Attendance Record awarding 31 CPD (Continuing Professional Development) credits will be issued to attendees who complete the training course.
• Candidates who do not pass the exam may retake it within 12 months of the initial attempt at no additional cost.

ISO/IEC 27002 Lead Manager training allows you to develop the necessary expertise and knowledge to support an organization in implementing and managing Information Security controls as specified in ISO/IEC 27002.

After completing this course, you can sit for the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. A PECB Lead Manager Certification proves that you have mastered the principles and techniques for the implementation and management of Information Security Controls based on ISO/IEC 27002.

Who should attend?

• Managers or consultants seeking to implement an Information Security Management System (ISMS) based on ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants seeking to master the Information Security Management System implementation process
• Individuals responsible for the information security, compliance, risk, and governance, in an organization
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• CTOs, CIOs and CISOs

Learning objectives

• Master the implementation of Information Security controls by adhering to the framework and principles of ISO/IEC 27002
• Gain a comprehensive understanding of the concepts, approaches, standards, methods and techniques required for the effective implementation and management of Information Security controls
• Comprehend the relationship between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behavior
• Understand the importance of information security for the strategy of the organization
• Master the implementation of information security management processes
• Master the formulation and implementation of security requirements and objectives

Educational approach

• This training is based on both theory and practice
• Sessions of lectures illustrated with examples based on real cases
• Practical exercises based on case studies
• Review exercises to assist the exam preparation
• Practice test similar to the certification exam

General Information

• Certification fees are included on the exam price
• Training material containing over 500 pages of information and practical examples will be distributed to the participants
• A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued to the participants
• In case of exam failure, you can retake the exam within 12 months for free

The PECB Certified ISO/IEC 27005 Lead Risk Manager training provides you with the essential expertise to assist organizations in managing risks associated with all assets relevant to Information Security, utilizing the ISO/IEC 27005 standard as a reference framework. Throughout this course, you will gain comprehensive knowledge of a process model designed for developing and implementing an Information Security Risk Management program. The curriculum also covers a deep understanding of best practices for risk assessment methodologies, including OCTAVE, EBIOS, MEHARI, and the harmonized Threat and Risk Assessment (TRA).

This training supports the implementation of the Information Security Management System (ISMS) framework outlined in the ISO/IEC 27001 standard. Upon mastering the key concepts of Information Security Risk Management based on ISO/IEC 27005, you may sit for the examination to apply for the “PECB Certified ISO/IEC 27005 Lead Risk Manager” credential. Holding this certificate demonstrates your practical knowledge and professional capability to support and lead teams in managing Information Security Risks.

Who should attend?

• Information Security risk managers
• Members of Information Security teams
• Professionals responsible for Information Security, compliance, and risk within an organization
• Individuals implementing or seeking to comply with ISO/IEC 27001, or those involved in risk management programs
• IT consultants
• IT professionals
• Information Security officers
• Privacy officers

Examination - Duration: 3 hours

The “PECB Certified ISO/IEC 27005 Lead Risk Manager” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam assesses the following competency domains:

• Domain 1: Fundamental principles and concepts of Information Security Risk Management
• Domain 2: Implementation of an Information Security Risk Management program
• Domain 3: Information security risk assessment
• Domain 4: Information security risk treatment
• Domain 5: Information security risk communication, monitoring, and improvement
• Domain 6: Information security risk assessment methodologies

General Information

• Certification fees are included in the exam price
• Training material comprising over 350 pages of information and practical examples will be provided
• A participation certificate granting 21 CPD (Continuing Professional Development) credits will be issued
• If you do not pass the exam, you can retake it within 12 months at no additional cost

The ISO 28000 Lead Implementer training program is designed to equip you with the essential expertise required to assist an organization in establishing, implementing, managing, and maintaining a Supply Chain Security Management System (SCSMS) in accordance with ISO 28000. Throughout this course, you will gain a deep understanding of best practices for Supply Chain Security Management Systems and learn how to enhance efficiency in managing potential security risks and their impacts within an organization’s supply chain.

Once you have mastered the key concepts of Supply Chain Security Management Systems, you may sit for the exam and apply for the PECB Certified ISO 28000 Lead Implementer credential. Holding a PECB Lead Implementer Certificate demonstrates your practical knowledge and professional capability to implement ISO 28000 within an organization.

Who should attend?

• Managers or consultants involved in Supply Chain Security Management
• Expert advisors seeking to master the implementation of a Supply Chain Security Management System
• Individuals responsible for maintaining conformance with SCSMS requirements
• SCSMS team members

Learning objectives

• Understand the correlation between ISO 28000 and other standards and regulatory frameworks
• Master the concepts, approaches, methods, and techniques used for implementing and effectively managing an SCSMS
• Learn how to interpret ISO 28000 requirements within the specific context of an organization
• Acquire skills to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an SCSMS
• Gain the expertise to advise organizations on implementing best practices for Supply Chain Security Management Systems

Educational approach

• This training is grounded in both theory and best practices for SCSMS implementation
• Lecture sessions are illustrated with examples from case studies
• Practical exercises are based on a case study, including role-playing and discussions
• Practice tests mirror the format of the Certification Exam

General Information

• Certification fees are included in the exam price
• Training material containing over 450 pages of information and practical examples will be provided
• A participation certificate awarding 31 CPD (Continuing Professional Development) credits will be issued
• In the event of an exam failure, you may retake the exam within 12 months at no additional cost

ISO 37001:2025 serves as the international benchmark for Anti-Bribery Management Systems (ABMS), offering comprehensive requirements and guidance to help organisations of all sizes and sectors prevent, detect, and manage bribery risks.

This instructor-led training, available online or on-site, is designed for professionals at beginner to intermediate levels who aim to gain a solid understanding of, and support the implementation or auditing of, an ABMS aligned with ISO 37001:2025.

Upon completing this course, participants will be capable of:

• Grasping the structure and core intent behind ISO 37001:2025.
• Applying anti-bribery requirements effectively within real-world organisational settings.
• Establishing and monitoring robust internal controls and reporting mechanisms.
• Assisting organisations in achieving regulatory compliance and upholding ethical integrity.

Course Format

• Interactive lectures and discussions.
• Analysis of real-world case studies and examples.
• Scenario-based exercises and collaborative group work.

Customisation Options

• To arrange a tailored training session for this course, please get in touch with us.

ISO 37301 is an international standard that outlines the requirements for creating, developing, implementing, evaluating, maintaining, and enhancing an effective compliance management system (CMS).

This instructor-led live training, available online or on-site, targets beginner to intermediate professionals who want to understand, implement, or audit a compliance management system based on ISO 37301.

By the end of this training, participants will be able to:

• Grasp the structure, purpose, and scope of ISO 37301.
• Implement the core components of a compliance management system (CMS).
• Identify compliance risks and opportunities throughout the organization.
• Integrate ISO 37301 CMS with existing governance, risk, or ISO systems.

Format of the Course

• Interactive lectures and discussions.
• Hands-on exercises and real-world case studies.
• Group activities and compliance scenario simulations.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

The ISO/IEC 42001 Foundation training course provides you with the essential principles needed to establish and manage an Artificial Intelligence Management System (AIMS) in compliance with ISO/IEC 42001. Designed to build a robust understanding, this course lays a solid groundwork for advancing your expertise in AIMS.

The ISO/IEC 42001 Lead Auditor training program equips you with the essential expertise to conduct audits of Artificial Intelligence Management Systems (AIMS) by utilizing established audit principles, procedures, and techniques.

The ISO 9001 Foundation training empowers you to master the essential components required to implement and manage a Quality Management System (QMS) in accordance with ISO 9001 standards. Throughout this course, you will gain a comprehensive understanding of the various modules that constitute a QMS, such as QMS policy, procedures, performance metrics, management commitment, internal audits, management reviews, and the principle of continual improvement.

Upon finishing this course, you will be eligible to take the exam and apply for the “PECB Certified ISO 9001 Foundation” credential. Holding a PECB Foundation Certificate demonstrates your grasp of the fundamental methodologies, requirements, frameworks, and management approaches outlined in the standard.

Who should attend?

• Professionals actively involved in Quality Management
• Individuals aiming to acquire knowledge about the core processes of Quality Management Systems (QMS)
• Professionals interested in pursuing a career path in Quality Management

The “PECB Certified ISO 9001 Foundation” examination fully complies with the requirements of the PECB Examination and Certification Programme (ECP). The exam assesses the following competency domains: h Domain 1: Fundamental principles and concepts of a Quality Management System (QMS) h Domain 2: Quality Management System (QMS)

After successfully passing the exam, you can apply for the “PECB Certified ISO 9001 Foundation” credential.

General Information

Certification fees are included in the exam price

Comprehensive training materials, containing over 200 pages of information and practical examples, will be provided

A participation certificate granting 14 CPD (Continuing Professional Development) credits will be issued

In the event of an exam failure, you may retake the exam free of charge within 12 months

ISO 9001 and ISO 27001 are globally acknowledged standards for quality and information security management systems, respectively.

This instructor-led live training (available online or onsite) targets intermediate-level professionals seeking to interpret ISO 9001 and ISO 27001 standards and conduct internal audits with confidence.

Upon completing this training, participants will be able to:

• Grasp the core principles and requirements of ISO 9001 and ISO 27001.
• Interpret clauses and controls within practical, real-world contexts.
• Plan and execute internal audits that align with ISO standards.
• Identify nonconformities and recommend appropriate corrective actions.

Course Format

• Interactive lectures and group discussions.
• Simulated auditing exercises and case studies.
• Hands-on analysis of quality and security scenarios.

Customization Options

• To arrange a customized training session for this course, please contact us.

This instructor-led, live training in Sweden (online or onsite) is aimed at intermediate-level professionals who wish to develop a systematic approach to identifying, analyzing, and resolving problems using RCA methodologies.

By the end of this training, participants will be able to:

• Understand essential concepts of RCA and continuous improvement cycles.
• Apply different RCA tools to identify the root cause of problems.
• Develop and implement effective problem-solving strategies.
• Integrate RCA into organizational improvement and prevention efforts.

The primary objective of this program is to shift the audit process from a reactive approach focused on "finding" issues to a proactive strategy centered on "prevention." By mastering Root Cause Analysis, the Internal Audit team can specifically target the elimination of recurring findings. This ensures that once a weakness is identified, the resulting recommendations offer a permanent solution, thereby safeguarding the company's operational efficiency and financial integrity.

Failing to implement structured RCA creates a high-risk environment characterized by:

• Financial Erosion: Unresolved root causes within financial processes result in cumulative losses that increase over time.
• Resource Wastage: Auditors spend 40% more time re-auditing the same failed controls, detracting from their ability to focus on new strategic risks.
• Diminished Authority: Repeatedly reporting the same issues weakens the Audit Division's influence with senior management and auditees.

This instructor-led, live training in Sweden (online or onsite) is designed for intermediate-level internal auditors seeking to improve their audit effectiveness by applying structured RCA techniques.

By the end of this training, participants will be able to:

• Understand RCA methodologies and their role in internal auditing.
• Identify and analyze the root causes of audit findings.
• Apply RCA tools such as the 5 Whys, Fishbone Diagram, and Failure Mode and Effects Analysis (FMEA).
• Develop corrective and preventive action plans based on RCA findings.
• Integrate RCA into the internal audit process to improve risk management.

This instructor-led, live training (online or onsite) is aimed at intermediate-level safety professionals and operational managers who wish to enhance their ability to investigate incidents, identify systemic weaknesses, and design effective corrective and preventive actions.