The ISO/IEC 27035 Lead Incident Manager training course equips participants with the knowledge and skills necessary to support organizations in establishing and implementing a process for managing information security incidents. This training course is based on the ISO/IEC 27035 series and other good practices of incident management and covers the entire incident lifecycle, from incident planning to post-incident activities. In addition, participants will also learn about the role of key stakeholders and the importance of working with other organizations to handle information security incidents.
Whether deliberate or accidental, information security incidents are almost inevitable in the digital age, impacting organizations of all sizes and sectors. Learning to navigate the complexities of information security incident detection, assessment, response, and reporting allows participants to assist organizations in ensuring the safety of their information and reducing negative business consequences.
This training course aligns with ISO/IEC 27001, ISO/IEC 27005, and other standards in the ISO/IEC 27000 series and provides practical guidance on information security.
Upon completing the course and its exam, participants can apply for the “PECB Certified ISO/IEC 27035 Lead Incident Manager” credential, showcasing their proficiency in strategically and effectively managing and mitigating information security incidents.
This training course is intended for:
By the end of this training course, you will be able to:
The main requirement for participating in this training course is having a general knowledge of incident management processes, information security principles, and the ISO/IEC 27000 family of standards.
Day 1: Introduction to information security incident management concepts and ISO/IEC 27035
Day 2: Designing and preparing an information security incident management plan
Day 3: Detecting and reporting information security incidents
Day 4: Monitoring and continual improvement of the information security incident management process
Day 5: Certification exam
The “PECB Certified ISO/IEC 27035 Lead Incident Manager” exam meets the PECB Examination and Certification Program (ECP) requirements. It covers the following competency domains:
Domain 1: Fundamental principles and concepts of information security incident management
Domain 2: Information security incident management process based on ISO/IEC 27035
Domain 3: Designing and developing an organizational incident management process based on ISO/IEC 27035
Domain 4: Preparing and executing the incident response plan for information security incidents
Domain 5: Implementing incident management processes and managing information security incidents
Domain 6: Improving the incident management processes and activities
For specific information about exam type, languages available, and other details, please visit the List of PECB Exams and the Examination Rules and Policies.
After passing the exam, you can apply for one of the credentials listed in the table below. You will receive a certification once you fulfill all the requirements of the selected credential.
Credential | Exam | Professional experience | ISIMMS project experience | Other requirements |
PECB Certified ISO/IEC 27035 Provisional Incident Manager | PECB Certified ISO/IEC 27035 Lead Incident Manager Exam or equivalent | None | None | Signing the PECB Eode of Ethics |
PECB Certified ISO/IEC 27035 Incident Manager | PECB Certified ISO/IEC 27035 Lead Incident Manager Exam or equivalent | Two years: One year of work experience in Information Security Incident Management | ISIM activities: a total of 200 hours | Signing the PECB Code of Ethics |
PECB Certified ISO/IEC 27035 Lead Incident Manager | PECB Certified ISO/IEC 27035 Lead Incident Manager Exam or equivalent | Five years: Two years of work experience in Information Security Incident Management | ISIM activities: a total of 300 hours | Signing the PECB Code of Ethics |
PECB Certified ISO/IEC 27035 Senior Lead Incident Manager | PECB Certified ISO/IEC 27035 Lead Incident Manager Exam or equivalent | Ten years: Seven years of work experience in Information Security Incident Management | ISIM activities: a total of 1,000 hours | Signing the PECB Code of Ethics |
The incident management project experience should follow best implementation practices and include the following:
For more information about ISO/IEC 27035 certifications and the PECB Certification process, please refer to Certification Rules and Policies.
For additional information, please get in touch with us at support@pecb.com or visit www.pecb.com.