The ISO/IEC 27001 Foundation training is designed for those who need a clear and structured understanding of the ISO/IEC 27001:2022 standard. Over the course of 16 hours, you’ll learn what an information security management system, ISMS,is, understand the main requirements of the standard, and explore how the most relevant security controls work in practice..

This course is the ideal starting point for professionals who want to take their first steps in information security, prepare for certification projects, or progress to more advanced training.

• Members of an information security team
• IT Specialists
• People involved in the implementation of ISO 27001
• Technical personnel involved in ISMS related operations
• Auditors

• Understand the implementation of an ISMS according to ISO/IEC 27001:2022;
• Understand the relationships between ISMS components and compliance with the requirements of the organization's various stakeholders;
• Know the concepts, approaches, standards, methods and techniques that allow an effective management of an ISMS in accordance with the ISO/IEC 27001:2022 standard;
• Acquire skills to support an organization in implementing the ISO/IEC 27001:2022 standard.

General knowledge of English.

• Mission, vision and policy of the company's ISMS;
• Framework scope statement;
• Information security objectives and action plan for the objectives;
• Overview of ISMS requirements;
• ISMS code of practice and implementation guidelines on controls (ISO/IEC 27002);
• Overview of documentation requirements;
• Risk assessment and treatment;
• Conducting internal audits and management review meeting;
• Corrective action and effectiveness of corrective action.

The training will be led by Pedro Castro Henriques, CEO and co-founder of Strongstep, as well as a specialist in transforming complex requirements into practical, effective solutions.

With over 15 years of experience in process improvement, certifications, and information security, Pedro has led projects in 12 countriesacross sectors such as healthcare, telecommunications, and — above all — the automotive industry.

He was Head of IT at the Portuguese Health Regulatory Authority (ERS) and worked at Ericsson (Q-Labs) on global technology transfer and process improvement initiatives.

Pedro is an expert in standards such as ISO 27001, GDPR, ASPICE, CMMI, Industry 4.0, among others. You can be sure that his goal is to turn compliance into a true competitive advantage for companies.