Skip to main content
Back to Training
ISO/IEC 27002 Lead Manager certification badge

Information Security

ISO/IEC 27002

ISO/IEC 27002 Lead Manager

Where ISO/IEC 27001 sets the management system, ISO/IEC 27002 is the detailed control catalog — and this course is about putting those controls to work. Participants learn to interpret each control in the context of their own organization, choose the right ones to treat identified risks, and then implement and manage them across people, physical, and technological domains. It complements an ISMS rather than duplicating it.

Lead5 daysVirtual & On-site31 CPD credits

Learning path options

Self Study

Self-paced online study, at your own pace

Discuss with us →

In-Person Training

On-site delivery across Qatar and the GCC

Discuss with us →

Live Online Training

Instructor-led and delivered live online

Discuss with us →

Why attend

  • Build the skills to determine, implement, and manage information security controls
  • Interpret ISO/IEC 27002 controls in your own organizational context
  • Choose the right controls to treat identified risks
  • Demonstrate control expertise with a recognized credential

Who should attend

  • Managers and consultants strengthening their grasp of security controls
  • People responsible for information security, compliance, risk, or governance
  • IT professionals and consultants building information security expertise
  • ISMS implementation and information security team members

What you'll learn

  • Explain the core information security, cybersecurity, and privacy concepts in ISO/IEC 27002
  • Recognize how ISO/IEC 27002 relates to ISO/IEC 27001 and other standards and frameworks
  • Interpret ISO/IEC 27002 controls in an organizational context
  • Support an organization in determining, implementing, and managing controls
  • Explain the approaches and techniques for implementing and managing controls

Our approach

  • Integrates theory and practice with guidance and worked examples
  • Uses essay-style exercises and scenario-based multiple-choice quizzes
  • Encourages communication and discussion throughout
  • Mirrors the certification exam format

Prerequisites

A fundamental understanding of ISO/IEC 27002 and a comprehensive knowledge of information security controls.

Course agenda

Day 1Introduction to ISO/IEC 27002
Day 2Roles, responsibilities, assets, policies, and people controls
Day 3Physical controls and protecting information systems and networks
Day 4Incident management, testing, and monitoring of controls
Day 5Certification exam

Examination

The exam spans five competency domains, covering security, cybersecurity, and privacy concepts and the organizational, people, physical, and technological controls — plus their measurement and monitoring.

Certification

  • Leads to the PECB Certified ISO/IEC 27002 Lead Manager credential
  • Earned by passing the exam, signing the PECB Code of Ethics, and meeting the experience requirement for your tier

Credential tiers

Provisional ManagerPass the exam — no experience required
Manager2 years' experience (1 in information security management) · 200 project hours
Lead Manager5 years' experience (2 in information security management) · 300 hours
Senior Lead Manager10 years' experience (7 in information security management) · 1,000 hours

Build this capability across your teams.

DAI Consultancy delivers ISO/IEC 27002 Lead Manager as a corporate cohort — in-person, virtual, or hybrid — structured around your organization's objectives.