
Information Security
ISO/IEC 27035ISO/IEC 27035 Foundation
Security incidents are inevitable; chaos in handling them isn't. This two-day foundation course covers the essential elements of building an incident management plan and managing information security incidents under ISO/IEC 27035 — the core concepts, the process approaches, and how the standard connects to the wider regulatory landscape. It suits anyone who needs a working grasp of incident management before specializing further.
Learning path options
Why attend
- Understand how effective security incident management actually works
- Learn the process approaches ISO/IEC 27035 prescribes
- See how the standard relates to other frameworks and regulations
- Earn a recognized foundation credential in two days
Who should attend
- Professionals interested in incident management process approaches
- Anyone building a grounding in the principles and concepts of security incident management
- Those starting a career in information security incident management
What you'll learn
- Understand the basic concepts of information security incident management
- Recognize how ISO/IEC 27035 relates to other standards and regulatory frameworks
- Apply the process approaches used to manage security incidents effectively
Our approach
- Lecture sessions illustrated with practical questions and examples
- Practical exercises with worked examples and discussion
- Practice tests that mirror the certificate exam
Prerequisites
Basic knowledge of security incident management is preferred.
Course agenda
Examination
The exam covers two competency domains: the fundamental principles and concepts of information security incident management, and information security incident management itself.
Certification
- Leads to the PECB Certificate Holder in ISO/IEC 27035 Foundation credential
- No professional experience required — pass the exam and sign the PECB Code of Ethics
- Includes one free exam retake within 12 months
Build this capability across your teams.
DAI Consultancy delivers ISO/IEC 27035 Foundation as a corporate cohort — in-person, virtual, or hybrid — structured around your organization's objectives.

