2. / Training & Certification
  3. / ISO/IEC 27002
  4. / ISO/IEC 27002 Lead Manager

ISO/IEC 27002 Lead Manager

The ISO/IEC 27002 Lead Manager training course enables participants to acquire a comprehensive knowledge and understanding of the implementation and management of information security controls based on ISO/IEC 27002.

Why Should You Attend?

The ISO/IEC 27002 Lead Manager training course enables participants to develop the necessary knowledge and skills for supporting an organization in effectively determining, implementing, and managing information security controls. The training course provides information that will help participants interpret the ISO/IEC 27002 controls in the specific context of an organization.

The PECB ISO/IEC 27002 Lead Manager Certification demonstrates that you have acquired the necessary expertise for determining adequate information security controls needed to treat the risks identified by a risk assessment process.

The training course is followed by an exam. If you pass, you can apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential.

Who Should Attend?

This training course is intended for:

  • Managers or consultants seeking to enhance their knowledge regarding the implementation of information security controls in an ISMS based on ISO/IEC 27001
  • Individuals responsible for maintaining information security, compliance, risk, or governance in an organization
  • IT professionals or consultants seeking to enhance their knowledge in information security
  • Members of an ISMS implementation or information security team

Learning Objectives

Upon successfully completing the training course, participants will be able to:

  • Explain the fundamental concepts of information security, cybersecurity, and privacy based on ISO/IEC 27002
  • Acknowledge the relationship between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
  • Interpret the ISO/IEC 27002 information security controls in the specific context of an organization
  • Support an organization in effectively determining, implementing, and managing information security controls based on ISO/IEC 27002 
  • Explain the approaches and techniques used for the implementation and effective management of information security controls

Educational Approach

  • The training course integrates both theory and practice by guidance and practical examples for the implementation and management of information security controls.
  • The training course contains essay-type exercises and multiple-choice quizzes, some of which are scenario-based.
  • Participants are encouraged to communicate and discuss with each other while partaking in exercises and quizzes.
  • The structure of quizzes is similar to that of the certification exam.

Prerequisites 

The main requirements for participating in this training course are having a fundamental understanding of ISO/IEC 27002 and comprehensive knowledge of information security controls.

More Details

Course agenda

  • Day 1: Introduction to ISO/IEC 27002

    Day 2: Roles and responsibilities, assets, policies, and people controls

    Day 3: Physical controls and protection of information systems and networks

    Day 4: Information security incident management and testing and monitoring of information security controls based on ISO/IEC 27002

    Day 5: Certification exam

Examination

  • The “PECB Certified ISO/IEC 27002 Lead Manager” exam meets all the requirements of the PECB Examination and Certification Program (ECP). It covers the following competency domains:

    Domain 1: Fundamental principles and concepts of information security, cybersecurity, and privacy

    Domain 2: Information security management system (ISMS) and initiation of ISO/IEC 27002 information security controls implementation

    Domain 3: Implementation and management of organizational and people controls based on ISO/IEC 27002

    Domain 4: Implementation and management of physical and technological controls based on ISO/IEC 27002

    Domain 5: Performance measurement, testing, and monitoring of ISO/IEC 27002 information security controls

    For specific information about the exam type, languages available, and other details, please visit the List of PECB Exams and the Examination Rules and Policies.
Certification

  • After successfully completing the exam, you can apply for one of the credentials shown on the table below. You will receive a certificate once you fulfill all the requirements of the selected credential.

    Credential Exam Professional experience ISCMS project experience Other requirements
    PECB Certified ISO/IEC 27002 Provisional Manager PECB Certified ISO/IEC 27002 Lead Manager Exam, or equivalent None None Signing the PECB Code of Ethics
    PECB Certified ISO/IEC 27002 Manager PECB Certified ISO/IEC 27002 Lead Manager Exam, or equivalent Two years: One year of work experience in Information Security Management Information Security Management activities: a total of 200 hours Signing of the PECB Code of Ethics
    PECB Certified ISO/IEC 27002 Lead Manager PECB Certified ISO/IEC 27002 Lead Manager Exam, or equivalent Five years: Two years of work experience in Information Security Management Information Security Management activities: a total of 300 hours Signing of the PECB Code of Ethics
    PECB Certified ISO/IEC 27002 Senior Lead Manager PECB Certified ISO/IEC 27002 Lead Manager Exam, or equivalent Ten years: Seven years of work experience in Information Security Management Information Security Management activities: a total of 1,000 hours Signing of the PECB Code of Ethics

    The information security activities should follow best implementation and management practices and include the following:

    1. Drafting an ISMS implementation plan
    2. Managing an information security implementation project
    3. Implementing information security processes
    4. Selecting information security processes
    5. Implementing information security controls

    For more information about ISO/IEC 27002 certifications and the PECB certification process, refer to the Certification Rules and Policies.

General Information
    • Certification and examination fees are included in the price of the training course
    • Participants will be provided with training course materials containing over 450 pages of information, practical examples, exercises, and quizzes.
    • An attestation of course completion worth 31 CPD (Continuing Professional Development) credits will be issued to the participants who have attended the training course.
    • Candidates who have completed the training course but failed the exam are eligible to retake it once for free within a 12-month period from the initial date of the exam.

    For additional information, please contact us at support@pecb.com, or visit www.pecb.com.

SUBSCRIBE TO OUR NEWSLETTER

Subscribe
Help Center

Training & Certification

Resources

Network

Examination

Certification

Company

Terms, Conditions, and Policies | Privacy Statement | Cookie Preferences

© 2025 Professional Evaluation and Certification Board. All rights reserved.

Scroll to Top