ISO/IEC 27001 Foundation [P-I27F2]

ISO/IEC 27001 provides a model for creating, implementing, exercising, auditing, maintaining and improving an information security management system.

Main Topics

ISO/IEC 27001 provides a model for creating, implementing, exercising, auditing, maintaining and improving an information security management system. The structure and implementation of the system are based on the needs, objectives, information values, security requirements, processes and other characteristics of an organization.

As a formal specification of the standard, ISO/IEC 27001 defines and comprises the requirements for an information security management system:

  • Information Security Management System
  • Management responsibility
  • Internal ISMS audits
  • Management audit of the ISMS
  • ISMS Optimization
  • Control objectives and controls

The Foundation Training in ISMS according to ISO/IEC 27001 will teach you what an ISMS is and which minimum requirements companies should strive for in connection with ISO/IEC 27001. You will be trained to know and understand the explained terms and concepts.



The participant understands the scope, objectives, key terminology and high requirements of the ISO/IEC 27001 standard as used in an information security organization and the main elements of the certification process. In particular, he/she learns:

  • The scope and purpose of ISO/IEC 27001 and how it can be used
  • The key terms and definitions used in the ISO/IEC 27000 series
  • The fundamental requirements for an ISMS in ISO/IEC 27001 and the need for continual improvement
  • The processes, their objectives and high level requirements
  • Applicability and scope definition requirements
  • Use of controls to mitigate IS risks
  • The purpose of internal audits and external certification audits, their operation and the associated terminology
  • The relationship with best practices and with other related International Standards: ISO 9001 and ISO/IEC 20000.



No formal requirements.

Target Audience

Internal and external persons who fulfill a role in the area of information security management or have an interest in this standard, even if the company itself is not (yet) certified: executives, management representatives, security officers, information security managers/officers, employees of the audit department, IT managers, IT consultants


ISO/IEC 27001 Foundation Certificate, awarded by APMG

Teaching materials

ISO/IEC 27000 Foundation folder includes:

  • Student workbook
  • USB stick with
    • Slideshow
    • Exam simulator

The standard “ISO/IEC 27001:2022 Information security, cybersecurity and privacy protection — Information security management systems” is provided and used for training purposes in the course but cannot be handed in for copyright reasons.



Can also be held as an internal seminar for groups of 6 or more.

Can be performed with the following simulations:

Contact Us

Questions about this seminar or requests for an inhouse offer:

Early bird discount

If you book more than 4 months in advance, we offer you a discount of 10% on the course fee

Quantity discount

Motivate your environment. Already with 3 persons in the same course and simultaneous registration we grant interesting discounts on the course fees:

  • 3 people on the same course date 10%
  • 4 people on the same course date 15%
  • 5 people on the same course date 20%

The discounts are not cumulative – the highest discount always applies.

Direkt buchen

Wir bieten sämtliche Onsite-Kurse im Hybrid-Modus an. Du hast also die Möglichkeit auch Remote an diesen Trainings teilzunehmen. Einfach bei der Anmeldung das entsprechende Kästchen anklicken.


Trag dich für deinen Glenfis Newsletter ein.

Wir senden keinen Spam, versprochen! Du kannst Dich jederzeit wieder abmelden.

Share This