ISO 22301 Foundation Training Course

This instructor-led, live training in Portugal (online or onsite) is aimed at beginner-level quality assurance professionals, regulatory compliance staff, medical device engineers, and any professionals involved in medical device manufacturing who wish to gain a foundational understanding of ISO 13485 to implement and maintain a compliant quality management system and ensure regulatory compliance in their organisations.

By the end of this training, participants will be able to:

• Understand the structure, purpose, and requirements of ISO 13485:2016.
• Learn about the quality management principles specific to medical devices.
• Gain insights into key processes and documentation required for compliance.
• Understand the steps to implement and maintain an ISO 13485 quality management system (QMS).

The ISO 22301 Introduction training course helps you grasp the fundamental concepts of a Business Continuity Management System (BCMS).

By participating in the ISO 22301 Introduction course, you will gain insight into the significance of a Business Continuity Management System and the advantages that organisations, society, and government bodies can derive from it.

Who should attend?

• Individuals with an interest in Business Continuity Management
• Individuals wishing to acquire knowledge regarding the core processes of a Business Continuity Management System (BCMS)

Learning objectives

• Comprehend the concepts, approaches, methods, and techniques employed to implement a Business Continuity Management System
• Understand the fundamental components of a Business Continuity Management System

In light of the increasing frequency of disruptions and the unpredictable nature of diverse disasters—including those of natural, occupational, or information security origin—organisations are actively pursuing ISO 22301 certification. As more entities seek compliance with ISO 22301, there is a corresponding demand for skilled auditors who possess the necessary skills and knowledge to assess and verify their compliance.

Upon completing the training course, you will be eligible to sit for the exam. Should you pass, you can apply for the “Certified ISO 22301 Lead Implementer” credential. This internationally recognised certificate validates your professional capabilities and practical knowledge to implement a Business Continuity Management System (BCMS) in accordance with ISO 22301 requirements within an organisation.

Who should attend?

• Project managers and consultants working on business continuity
• Expert advisors aiming to master the implementation of a business continuity management system
• Individuals tasked with maintaining conformity with BCMS requirements within an organisation
• Members of the BCMS team

Learning objectives

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used to implement and effectively manage a BCMS
• Learn how to interpret and apply the requirements of ISO 22301 within the specific context of an organisation
• Understand the operation of the business continuity management system and its processes as defined by ISO 22301
• Acquire the necessary knowledge to support an organisation in effectively planning, implementing, managing, monitoring, and continually improving a BCMS

Educational approach

• This training course is grounded in theory, implementation best practices, and the ISO 22301 requirements essential for BCMS implementation.
• Lecture sessions are reinforced with practical exercises based on a case study, including role-playing and discussions.
• Participants are encouraged to interact with one another and engage in discussions and exercises.
• The exercises mirror the format of the certification exam.

General Information

• Certification fees are included in the exam price. After completing the course, you will be able to book the exam.
• Participants will receive training materials comprising over 450 pages of explanatory information and practical examples.
• An Attendance Record worth 31 CPD (Continuing Professional Development) credits will be issued to participants who have attended the training course.
• Candidates who fail the exam may retake it within 12 months of the initial attempt at no additional cost.

Why participate?

The ISO/IEC 27001 Foundation training equips you with the essential knowledge to implement and manage an Information Security Management System (ISMS) in accordance with ISO/IEC 27001. Throughout this course, you will gain a comprehensive understanding of ISMS components, such as policy development, procedural frameworks, performance metrics, managerial commitment, internal auditing, management reviews, and strategies for continual improvement.

Upon successful completion of this course, you will be eligible to take the examination and apply for the "PECB Certified ISO/IEC 27001 Foundation" credential. This PECB Foundation Certificate validates your grasp of fundamental methodologies, requirements, frameworks, and management approaches.

Who should attend?

• Professionals involved in Information Security Management.
• Individuals aiming to acquire knowledge regarding the core processes of Information Security Management Systems (ISMS).
• Those interested in pursuing a career path in Information Security Management.

Educational approach

• Lectures are reinforced with practical questions and real-world examples.
• Practical exercises incorporate examples and guided discussions.
• Practice tests mirror the format and difficulty of the Certification Exam.

ISO/IEC 27001 Lead Auditor

The ISO/IEC 27001 Lead Auditor training programme empowers you to develop the necessary expertise to conduct an Information Security Management System (ISMS) audit by applying globally recognised audit principles, procedures, and techniques.

Why should you attend?

Throughout this training course, you will acquire the knowledge and skills required to plan and execute internal and external audits in compliance with the ISO 19011 standard and the ISO/IEC 17021-1 certification process.

Through practical exercises, you will master audit techniques and become competent in managing an audit programme, leading audit teams, handling customer communication, and resolving conflicts.

Upon acquiring the necessary expertise to perform this audit, you may sit for the exam and apply for the 'PECB Certified ISO/IEC 27001 Lead Auditor' credential. Holding a PECB Lead Auditor Certificate demonstrates that you possess the capabilities and competencies to audit organisations based on best practices.

Who should attend?

• Auditors seeking to perform and lead Information Security Management System (ISMS) certification audits
• Managers or consultants aiming to master the Information Security Management System audit process
• Individuals responsible for maintaining conformance with Information Security Management System requirements
• Technical experts preparing for an Information Security Management System audit
• Expert advisors in Information Security Management

Learning objectives

• Understand the operations of an Information Security Management System based on ISO/IEC 27001
• Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the auditor’s role in planning, leading, and following up on a management system audit in accordance with ISO 19011
• Learn how to lead an audit and audit team
• Learn how to interpret the requirements of ISO/IEC 27001 in the context of an ISMS audit
• Acquire the competencies of an auditor to plan an audit, lead an audit, draft reports, and follow up on an audit in compliance with ISO 19011

Educational approach

• This training is based on both theory and best practices used in ISMS audits
• Lecture sessions are illustrated with examples based on case studies
• Practical exercises are based on a case study which includes role playing and discussions
• Practice tests are similar to the Certification Exam

The ISO/IEC 27002 Lead Manager training equips you with the essential expertise and knowledge required to assist organisations in implementing and managing Information Security controls, as outlined in ISO/IEC 27002.

Upon completing this course, you will be eligible to take the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. This PECB Lead Manager Certification demonstrates that you have mastered the principles and techniques for implementing and managing Information Security Controls in accordance with ISO/IEC 27002.

Who should attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) based on ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants looking to master the Information Security Management System implementation process
• Professionals responsible for information security, compliance, risk, and governance within an organisation
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• CTOs, CIOs and CISOs

Learning objectives

• Gain mastery in implementing Information Security controls by adhering to the framework and principles of ISO/IEC 27002
• Develop a comprehensive understanding of the concepts, approaches, standards, methods, and techniques necessary for the effective implementation and management of Information Security controls
• Comprehend the interrelationships between components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behaviour
• Appreciate the significance of information security within the broader strategy of an organisation
• Mastery of implementing information security management processes
• Expertise in formulating and implementing security requirements and objectives

Educational approach

• This training integrates both theoretical and practical components
• Lecture sessions supplemented with examples derived from real-life cases
• Practical exercises based on case studies
• Review exercises designed to aid exam preparation
• Practice tests that mirror the format of the certification exam

General Information

• Certification fees are included in the exam price
• Training material comprising over 500 pages of information and practical examples will be provided to participants
• Participants will receive a certificate of participation awarding 31 CPD (Continuing Professional Development) credits
• In the event of an unsuccessful exam result, you may retake the exam free of charge within 12 months

The ISO/IEC 27005 Lead Risk Manager training equips you with the essential expertise to assist an organisation in managing risks across all assets critical to Information Security, using the ISO/IEC 27005 standard as a reference framework. Throughout this course, you will gain comprehensive knowledge of the process model for designing and developing an Information Security Risk Management programme. The training also covers a thorough understanding of best practices for risk assessment methods, including OCTAVE, EBIOS, MEHARI, and Harmonized TRA. This course supports the implementation of the ISMS framework outlined in the ISO/IEC 27001 standard.

Upon mastering the necessary concepts of Information Security Risk Management based on ISO/IEC 27005, you may take the exam and apply for the “PECB Certified ISO/IEC 27005 Lead Risk Manager” credential. Holding a PECB Lead Risk Manager Certificate demonstrates that you possess the practical knowledge and professional capabilities to support and lead teams in managing Information Security Risks.

Who should attend?

• Information Security risk managers
• Members of Information Security teams
• Individuals responsible for Information Security, compliance, and risk within an organisation
• Individuals implementing or seeking compliance with ISO/IEC 27001, or those involved in risk management programmes
• IT consultants
• IT professionals
• Information Security officers
• Privacy officers

Examination - Duration: 3 hours

The “PECB Certified ISO/IEC 27005 Lead Risk Manager” exam fully complies with the requirements of the PECB Examination and Certification Programme (ECP). The exam assesses the following competency domains:

• Domain 1: Fundamental principles and concepts of Information Security Risk Management
• Domain 2: Implementation of an Information Security Risk Management programme
• Domain 3: Information security risk assessment
• Domain 4: Information security risk treatment
• Domain 5: Information security risk communication, monitoring, and improvement
• Domain 6: Information security risk assessment methodologies

General Information

• Certification fees are included in the exam price
• Training material comprising over 350 pages of information and practical examples will be provided
• A participation certificate awarding 21 CPD (Continuing Professional Development) credits will be issued
• In the event of exam failure, you may retake the exam within 12 months at no additional cost

This training course demonstrates how risk assessment for information security is conducted by integrating information from ISO/IEC 27005:2022 and ISO/IEC 27001. Alongside theoretical knowledge, the course includes practical exercises, quizzes, and case studies, making it a highly engaging learning experience.

Information security threats and attacks are constantly evolving and becoming more sophisticated. The most effective defence against these risks is the proper implementation and management of information security controls and best practices. Furthermore, robust information security is a key expectation and requirement for customers, legislators, and other interested parties.

This training course is designed to prepare participants to implement an Information Security Management System (ISMS) in accordance with ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and establish a framework for its ongoing management and improvement.

Upon completing the training course, you may sit for the exam. If you pass successfully, you can apply for the 'PECB Certified ISO/IEC 27001 Lead Implementer' credential, which validates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.

Who Should Attend?

• Project managers and consultants involved in or concerned with the implementation of an ISMS
• Expert advisors seeking to master the implementation of an ISMS
• Individuals responsible for ensuring conformity to information security requirements within an organisation
• Members of an ISMS implementation team

General Information

• Certification fees are included in the exam price
• Training material containing over 450 pages of information and practical examples will be distributed
• A participation certificate granting 31 CPD (Continuing Professional Development) credits will be issued
• If the exam is not passed, you may retake it within 12 months free of charge

Educational Approach

• This training course includes essay-type exercises, multiple-choice quizzes, examples, and best practices utilised in the implementation of an ISMS.
• Participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes mirrors that of the certification exam.

Learning Objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
• Recognise the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes based on ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 within the specific context of an organisation
• Acquire the necessary knowledge to support an organisation in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

Enrolment in the ISO 28000 Lead Implementer training equips you with the essential expertise to assist organisations in establishing, implementing, managing, and maintaining a Supply Chain Security Management System (SCSMS) aligned with ISO 28000. Throughout this course, you will gain a comprehensive understanding of SCSMS best practices and learn how to enhance the efficiency of managing potential security risks and their impacts within an organisation’s supply chain.

Upon mastering the necessary concepts of Supply Chain Security Management Systems, you may sit for the examination and apply for the “PECB Certified ISO 28000 Lead Implementer” credential. Holding a PECB Lead Implementer Certificate demonstrates your practical knowledge and professional capability to implement ISO 28000 within an organisation.

Who should attend?

• Managers or consultants involved in Supply Chain Security Management
• Expert advisors aiming to master the implementation of a Supply Chain Security Management System
• Individuals responsible for maintaining conformance with SCSMS requirements
• SCSMS team members

Learning objectives

• Recognise the correlation between ISO 28000 and other standards and regulatory frameworks
• Master the concepts, approaches, methods, and techniques used for the implementation and effective management of an SCSMS
• Learn how to interpret ISO 28000 requirements within the specific context of an organisation
• Learn how to support an organisation in effectively planning, implementing, managing, monitoring, and maintaining an SCSMS
• Acquire the expertise to advise an organisation on implementing Supply Chain Security Management System best practices

Educational approach

• This training is grounded in both theory and best practices used in SCSMS implementation
• Lecture sessions are illustrated with examples from case studies
• Practical exercises are based on a case study involving role-playing and discussions
• Practice tests mirror the format of the Certification Exam

General Information

• Certification fees are included in the exam price
• Training material, comprising over 450 pages of information and practical examples, will be distributed
• A participation certificate awarding 31 CPD (Continuing Professional Development) credits will be issued
• In the event of an exam failure, you may retake the exam within 12 months at no additional cost

ISO 31000 is an international standard that offers principles and guidance for effective risk management across all types of organizations and business activities.

This instructor-led, live training (online or onsite) is aimed at beginner-level to intermediate-level professionals who wish to develop a strong understanding of ISO 31000 and apply its risk management framework and process to their organizations.

By the end of this training, participants will be able to:

• Understand the fundamental principles of ISO 31000 and risk management.
• Apply the risk management framework to integrate risk across business functions.
• Perform risk identification, assessment, treatment, and monitoring.
• Develop and maintain a risk-aware organizational culture and communication structure.

Format of the Course

• Interactive lecture and discussion.
• Real-world case studies and examples.
• Group exercises and scenario-based activities.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

ISO 37001:2025 serves as an international standard for Anti-Bribery Management Systems (ABMS), offering specific requirements and guidance to help organisations of any size or industry prevent, detect, and address bribery risks.

This live training, delivered by an instructor either online or on-site, is designed for professionals at a beginner to intermediate level who wish to understand and facilitate the implementation or auditing of an anti-bribery management system aligned with ISO 37001:2025.

Upon completion of this course, participants will be capable of:

• Grasp the structure and underlying intent of ISO 37001:2025.
• Apply anti-bribery requirements within real-world organisational settings.
• Create and oversee effective internal controls and reporting mechanisms.
• Assist organisations in meeting regulatory compliance and maintaining ethical integrity.

Course Format

• Interactive lectures and discussions.
• Analysis of real-world case studies and examples.
• Scenario-based exercises and collaborative group work.

Customisation Options

• To arrange bespoke training for this course, please get in touch.

ISO 37301 is an international standard that outlines the requirements for establishing, developing, implementing, evaluating, maintaining, and improving an effective compliance management system (CMS).

This instructor-led live training (available online or onsite) targets beginner to intermediate-level professionals who wish to understand, implement, or audit a compliance management system based on ISO 37301.

By the end of this training, participants will be able to:

• Understand the structure, purpose, and scope of ISO 37301.
• Implement the key elements of a compliance management system (CMS).
• Identify compliance risks and opportunities across the organization.
• Integrate ISO 37301 CMS with existing governance, risk, or ISO systems.

Format of the Course

• Interactive lecture and discussion.
• Hands-on exercises and real-world case studies.
• Group activities and compliance scenario simulations.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

The ISO/IEC 42001 Foundation training course provides the core principles required to establish and manage an Artificial Intelligence Management System (AIMS) in compliance with ISO/IEC 42001. Designed to deliver a comprehensive understanding, this course lays a robust groundwork for advancing your expertise in AIMS.