• Certified ISO 27001 Lead Implementer™

    ISO 27001 Lead ImplementerBuilding upon the foundation understanding of the ISO 27005 risk management framework validated by the Certified Internal Controls Risk Analyst credential, the Certified ISO 27001 Lead Implementer certification certifies your ability to implement the formal structure, governance, and policy of an ISO 27001 conforming Information Security Management System (ISMS). 

    Upon completion of this training and certificate program, you will:

    • be equipped with knowledge and skills required to deploy, manage, monitor, and improve an Information Security Management System in line with the current ISO 27001 and 27002 standards of best practice;
    • expand your information security management competency;
    • increase your credibility through gaining international recognition; and
    • improve your résumé and help to increase your earning potential.

    Getting Certified as a Certified ISO 27001 Lead Implementer™

    Getting certified is easy, and can be accomplished completely online. The ISO 27001 Lead Implementer™ certification is available to qualified candidates who:

    1. Attend the required IRMCB approved curriculum course, live or online, via an IRMCB Authorized Training and Education Center. Prerequisite training for ISO 27001 Lead Implementer certification eligibility includes completion of all of the following:
      • Policy Workshop: ISO 31000 Enterprise Risk Management
      • Policy workshop: ISO 27001 Information Security Management
    2. Pass the ISO 27001 Lead Implementer exams. For ISO 27001 Lead Implementer certification by IRMCB, candidates must pass IRMCB exams RM101, ISMS101, and ISMS102. IRMCB exams are administered on-line by an IRMCB ATEC. Your exam results are provided automatically upon completion of your exam.
    3. Submit your professional endorsements. Official endorsement forms are available for download from IRMCB or from IRMCB Authorized Training and Ecucation Centers that are approved to proctor examinations. Your completed application and documentation can be mailed, transmitted by facsimile, or e-mailed to:
           IRMCB
           ATTN: Certification Department
           11 Paces West Drive NW
           Atlanta, GA 30327 USA
           Fax: +1(786) 522-9063
           E-mail: certification@irmcb.org 
    4. Gain final approval from the certification committee and become certified by IRMCB.
      You will officially become certified once your exam and credentials are approved by the certification committee. Your certification kit will be mailed to the address you provided for your membership account. Those who have attained an IRMCB credential will be invoiced for certification renewal upon annual membership renewal. 

    Getting IRMCB standardized training and taking certification exams

    IRMCB courses are delivered by Authorized Training and Education Centers (ATECs) in standardized live and online formats. Select ATECs are also authorized to proctor exams and issue certificates.

    Authorized Training and Education Center

    Headquarters

    Authorized for Live Instructor-Led Training

    Authorized for Web-Based Training

    Authorized exam center

    Certified Information Security

    United States

    SCHEDULED EVENTS

    REGISTER

    REGISTER

  • Required Training

    ISO 27001 Lead Implementer certification requires successful completion of each of the following IRMCB authorized courses delivered by IRMCB Authorized Training and Education Centers (ATECs):

  • ISO 27001 Lead Implementer certification requires successful completion of three exams:


    Required Exam: RM101

    IRMCB Exam #RM101 maps to ISO/IEC 31000, 31010, and 27005 risk management content areas taught in "Policy Workshop: ISO 31000 Enterprise Risk Management."

    • Required  for CICRA, ISO 27001 Lead Implementer, ISO 27001 Lead Auditor, CICA, CBCS, CBCA, and CBCM certifications.
    • Number of questions: 65
    • Passing score: 75%
    • Time limit: 70 minutes

    RM101 Content Areas

    1. Context establishment
    2. Risk assessment
    3. Risk treatment
    4. Risk acceptance
    5. Risk communication
    6. Risk monitoring and review

    Required Exam: ISMS101

    IRMCB exam #ISMS101 maps to ISO/IEC 27001, 27002, and 27003 content areas associated with ISMS planning and strategy, as taught in "Policy Workshop:ISO 27001 Information Security Management".

    • Required for ISO 27001 Lead Implementer, CICA, and ISO 27001 Lead Auditor certification
    • Number of questions: 65
    • Passing score: 75%
    • Time limit: 70 minutes 

    Content Areas

    1. Developing an Information Security Management System program
    2. Project managing a successful ISO 27001 internal controls implementation
    3. Establishing the ISMS organization
    4. Core ISO 27001 and 27002 best practices relating to:
      • Information security policy and scope
      • Risk assessment and Statement of Applicability
      • Understanding the organization
  • Qualified experience for Certified ISO 27001 Lead Implementer™ certification

    Certified ISO 27001 Lead Implementer is an entry-level certification. No previous experience is required.

.