ISO27001 Foundation

Price: $2,495.00 (ex. GST)
Code: ISO27001 FND
Duration: 1 day
Location: Virtual Classroom (AEST)
Schedule: Virtual Classroom (AEST)
  • 19/08/2024 - 19/08/2024
  • 07/10/2024 - 07/10/2024
  • 18/11/2024 - 18/11/2024
Enquire Now
Book Your Course
    Reset options

Course Description

ISO 27001 is an international standard that specifies the need for an Information Security Management System. Information Security Management prevents  unauthorised access, use, disclosure, interruption, modification, or destruction of sensitive information within an organisation. It assists in preventing unauthorised access to Sensitive information held by enterprises include financial data, customer information, and intellectual property. This training equips learners with information security risk assessment, which is the process of detecting, analysing, and prioritising the risks to sensitive information inside an organisation. It also helps individuals  enhance their career opportunities and increase their earnings.

The 1-day ISO 27001 Foundation Training course provides delegates with in-depth knowledge about ISO 27001 and its principles. During this training, they will learn how to identify  common threats to information security and  about documented information, which is the information that is generated and maintained by organisations.  This course will be led by our highly skilled and knowledgeable trainer, who has years of experience in teaching and will help delegates get a complete understanding of this course.

Course Objectives

  • To learn how to identify the different clauses of ISO 27001:2022
  • To recognise the need for information security and potential threats
  • To learn the difference between active and passive attacks
  • To define the role of leadership in maintaining an effective ISMS
  • To attain in-depth knowledge about information security risk assessment
  • To learn the various triads and threats to information security

At the end of this training, delegates will be able to identify the needs and expectations of interested parties and their impact on the organisation. They will also be able to establish information security objectives and plans to achieve them.


The ISO 27001 Foundation Course is ideal for individuals seeking to familiarise themselves with the basic concepts and principles of information security and ISO 27001 standards.

The following professionals will benefit the most from this course:

  • Information Security Officers
  • Cybersecurity Engineers
  • Risk Managers
  • Compliance Officers
  • Auditors
  • Administrative Staff
  • IT Professionals


There are no formal prerequisites for this ISO 27001 Foundation Course. However, familiarity with Information Security principles can be beneficial for the delegates.

What’s included

  • ISO 27001 Foundation Examination
  • World-Class Training Sessions from Experienced Instructors
  • ISO 27001 Foundation Certificate
  • Digital Delegate Pack

EXAM Information

To achieve the ISO 27001 Foundation, candidates will need to sit for an examination. The exam format is as follows:

  • Question Type: Multiple Choice
  • Total Questions: 30
  • Total Marks: 30 Marks
  • Pass Mark: 50%, or 15/30 Marks
  • Duration: 40 Minutes
  • Introduction
  • Compatibility with Other Management System Standards
  • ISO 27001:2022 and Its Clauses
  • What is Business?
  • Industries
  • Risk
  • SWOT Analysis
  • Constructs and Characteristics of Assets
  • Security and Privacy
  • Triad of Information Security
  • Cyber Security is Everyone’s Responsibility
  • Cybersecurity Landscape
  • What is Information Security?
  • Information Security Management
  • Need of Information Security
  • Threats to Information Security
  • Active and Passive Attacks
  • Understanding the Organisation and Its Context
  • Understanding the Needs and Expectations of Interested Parties
  • Determining the Scope of the Information Security Management System
  • Information Security Management System
  • Leadership and Commitment
  • Policy
  • Organisational Roles, Responsibilities, and Authorities
  • Organisational Roles, Responsibilities, and Authorities
  • Information Security Objectives and Planning to Achieve Them
  • Planning of Changes
  • Resources
  • Competence
  • Awareness
  • Communication
  • Documented Information
  • Operational Planning and Control
  • Information Security Risk Assessment
  • Information Security Risk Treatment
  • Drafting Reports and Test Plans


There are no reviews yet.

Enquire now

Enquire now

    Unfortunately, Your Cart Is Empty
    Please Add Something In Your Cart