ISO 27001:2022 Transition Training Course
Need to undertake an ISO 27001:2022 Migration soon?
Transitioning to ISO 27001:2022 is a challenge that Information Security Managers, DPOs and others responsible for their organization’s Information Security Management System (ISMS) will face shortly.
When you’re ready to make the change, this online program will take you step-by-step through the transition process and enable your organization to meet all of the requirements of ISO 27001:2022.
In addition, this program will provide you personally with Lead Implementer & Auditor Certification.
The course provides you with the Knowledge of the Standard (including Annex A – Information Security Controls as per ISO 27002:2022) and the practical application of that knowledge with Audit Scenarios to enable you, as Audit Programme Manager, to undertake and manage Internal Audits for your Organization.
What will I learn from this ISO 27001 Transition Training?
This comprehensive ISO 27001:2022 Transition Course is divided into three Modules:
- Module 0: Introduction and background to the 2022 Standard and the changes that have been made to the 2013 standard.
- Module 1: Knowledge of the Standard, ISO 27001:2022, Information Security management systems requirements …
-
- Introduction to ISO 27001:2022
- Terms & Definitions – ISO 27001
- Fundamentals of Information Security Management Systems (ISMS)
- Some Key aspects of ISMS Auditing
- Structure & content of ISO 27001:2022
- Implementing an ISO 27002:2022 based ISMS
- Parts 1, 2 & 3
- Part 4: Context of the organisation
- Part 5: Leadership
- Part 6: Planning for the ISMS (2 modules)
- Information Security Risk Assessment
- The Annex A Controls
- Guidance to Risk Analysis
- Risk Identification
- Risk Estimation
- Risk Evaluation
- Information Security Risk Treatment
- Information Security Objectives and planning to achieve them
- Part 7: Support (2 modules)
- Part 8: Operation
- Part 9: Performance evaluation
- Part 10: Improvement
- Advanced aspects of ISMS Auditing (3 modules)
- FAQs about the Standard
- ISO 27002:2022, Information security, cybersecurity and privacy protection – Information security controls (5 modules)
- ISO 27006:2015/Amd 1 2020, Security Techniques – Requirements for IS Certification Bodies
- Online Module Examination
- Module 2: Practice with Scenarios, based on actual audits and includes advice on dealing with awkward situations and individuals. And with many FAQs answered.
-
- Audit Scenarios – Internal Auditor
- More Audit Scenarios – Lead Implementers
- FAQs about the Auditing Experience
What materials are included in this ISO 27001 Transition Training?
These materials, invaluable when implementing ISO 27001:2013, include:
- ISO 27001:2013 ISMS Implementation Guide (100+ pages)
- Diagram: The 31-step Path to ISO 27001:2013 Certification
- Sample ISMS Policy Manual
- Sample ISMS Maintained Documentation (procedures), including…
- Sample Info Assets, SoA Risk Assessments, and Controls
- Sample Statement of Applicability
- Workbook for Annex A (SoA) Evidence recording
- Sample ISMS Retained Documentation (records)
- ISO 27001:2013 Gap Analysis Tool
- Diagram: Auditor Certification Process
- Diagram: 6-Stage Audit Process
- Sample Code of Ethics
- Management of an Audit Programme
- Audit Plan example
- Audit Work Order example
- Nonconformity Report example
- EU GDPR Full text
- EU GDPR Checklist Templates for SMEs
- Information Security Risk Management process diagram
- Information Security Risk Treatment Activity diagram
- Note: Information Assets
- Information security risk management process
- Information security risk treatment activity
- Chart of ISO 27001 Internal and External COTO Issues
- Sample ISO 27001 FMEA Spreadsheet (Excel file)
- Sample Info Assets, SoA, Risk Assessments, and Controls – combined Spreadsheet (Excel file)
- Sample Statement of Applicability Spreadsheet (Excel file)
- Auditor’s Workbook for Annex A (SoA) Evidence Record (Excel file)
- Stage 1 ISO 27001 Checklist of Critical Issues
- Stage 1 ISO 27001 Lead Auditor Checklist
Who should enroll in this ISO 27001 Transition Training?
This ISO 27001:2022 Transition Course is for:
- Newcomers to ISMS: You don’t need to be an expert. You’ll be taken on a practical journey from getting started to ISO 27001 Certification.
- ISO 27001 Consultants: Gives you the methodology on how to implement ISMS Projects faster and easier than ever before.
- Experienced Information Security Management Professionals: Understand the impact of the Standard, the type and extent of documentation required, and best practice in maintaining an ISMS.
Key Features:
- Course is accredited to ISO 21001, the standard for Educational Organizations Management Systems
- An ISO 27001 Lead Implementer and Auditor certification is awarded upon passing the certification exam
- Certificate is immediately available online after the successful passing of the exam
- Certificate comes with a shareable QR code for instant verification of credentials
- Lessons range from 15 minutes to 1 hour, typically 20–30 minutes, ensuring that each topic is covered in suitable detail
- Course includes practice with scenarios that include dialogues
- Course includes 24/7 Live-chat Learner Support
- Course includes a learner manual, a copy of the standard, and samples of relevant forms and other documents
- Course comes with full-audio narration and Closed Captions for accessibility
- Courses are hosted on your browser so that no software has to be downloaded avoiding security risks.
- Course comes with quizzes, practice with scenarios, and open-book certification exam
- Course is hosted on your browser so that no software has to be downloaded avoiding security risks.
- Features cross-device compatibility (courses can be taken on any desktop, tablet, or mobile)
- Offers full-resume feature (end a session mid-lesson and continue exactly where you left off, even from a different device)
- Features real-time interactive content in a secure web-based environment
- Offers a clear learning path (once you’ve completed the internal auditor course, you have the option to progress to the lead auditor, up to the consultant and lead auditor course.
- Examination and certificate fee are already included in the course fee
- Payable via PayPal or Stripe using any credit or debit cards
- Option to pay in 4 monthly installments available
Enrollment and Registration Process
To enroll in a deGRANDSON’s ISO auditor course, you would need to go through the following steps:
- Select desired course
- Complete check out proces
- Wait for Payment Confirmation email
- Check your email for the enrollment instructions
- Complete the sign up process
Flexible Payment Options
Pay by Credit Card, Debit Card, SEPA, PayPal Account and more.
Installment Option
Spread the cost of your purchase. Option to pay in 4 monthly installments available for most courses.
Group Discount
Get 10, 15, and 25% discount when you enroll 3, 10, 20 or more people.
About the Course Author
Dr John FitzGerald graduated with a 1st class honours degree in chemistry and a PhD in synthetic organic chemistry. He worked for 15 years in the manufacturing industry, then as a trainer and consultant in the UK and Ireland before founding deGRANDSON Global in 2009.
He serves as the company Director and course developer while occasionally working as a Lead Auditor on ISO 9001, ISO 13485, ISO 14001, ISO 27001, ISO 45001, and ISO 55001 audits for an accredited certification body (CAB).
How is this ISO 27001 Transition Training Course delivered?
The ISO 27001 Lead Implementer Certification Course is delivered online from our Learning Management System (LMS), which is provided and maintained by Inquisiq, the Award-winning Learning Management System.
All Lessons have a full resume and scaling capabilities. This means, for example, you can:
- Start a Lesson at work on your Work Station running on Windows 10,
- Continue the Lesson on the train home on your iPad running on iOS 9 and,
- Complete the Lesson at home on your Notebook PC running on Windows 8.1.
Are there any prequalifications to enroll in this ISO 27001 Transition Training Course?
The minimum of a Secondary School Certificate (such as a High School Diploma, Baccalaureate, or similar National Vocational Qualification) combined with 5 years’ work experience, with 2 at managerial/supervisory level, is recommended.
You do not have to provide us with any evidence of your qualifications and experience. However, if you do not meet these requirements, you can expect to struggle with the Course.
Examination and Certification Process
- Finish the ISO 27001 Transition training course
- Take the certification exam (the exam is free of charge)
- Pass the certification exam (you have two attempts to pass it)
- Retake the certification exam if necessary
- Receive your certificate in your email within 5 minutes after you’ve successfully completed the certification exam
About your ISO 27001 Lead Implementer Certification
After successfully passing the certification exam, you will receive your ISO Auditor certificate providing formal recognition of your achievement.
It comes with features designed to enhance its credibility and make it easier to verify and share your qualification with employers, clients, and your professional network.
These include:
- Your full name
- The type of certificate that was awarded to you
- The issuer of the certificate (deGRANDSON Global)
- Your credential ID number
- The credential signatory (Dr John FitzGerald, Founder and CEO, deGRANDSON Global)
- The date the credential was issued
- A QR code that links to a page where you can share your credential on your social media profiles
Sample Learner Certificate
About deGRANDSON’s Certification
deGRANDSON’s ISO auditor, implementer, and consultant courses are certified to internationally recognized standards, including ISO 21001:2018 for educational organization management, ISO 29993:2017 for learning services outside formal education, and ISO 29994:2021 for distance learning requirements.
These certifications ensure that the courses are designed, delivered, and assessed according to globally accepted practices for both traditional and online learning environments.
The ISO 21001 certification is issued by Business Quality Assurance International (BQAI), which is accredited by the Irish National Accreditation Board (INAB), a member of international accreditation agreements that support global recognition.
Because of this learners benefit from enhanced credibility with employers and certification bodies, consistent and high-quality course delivery, and greater confidence in the effectiveness and reliability of online learning.
Course Finder Tool
Having a hard time figuring out which course will be best for you? Our CourseFinder tool can help you decide.
Free ISO 27001 Implementation Handbook
This 90-page instruction manual is free with our ISO 27001 Lead Implementer Course. It is not for sale.
It goes over everything you’ll need to develop, implement, and maintain a management system that can achieve ISO 27001 Certification including the following:
- Initiating the Information Security Management System Project
- Obtain management support (Example of Information Security Policy Statement)
- Assemble Information Security Management System Project Team
- Complete Gap Analysis
- Prepare Information Security Management System Project Plan
- The Information Security Context of the Organisation
- Determine the Information Security Context of the Organisation
- Identify the applicable legal and regulatory requirements
- EU General Data Protection Regulations 2021 (GDPR) (Example of addition of applicable Legislation to Scope of Information Security Management System Statement)
- Determine other interested parties’ needs
- Define and establish an Information Security Management System
- Define the Scope of the Information Security Management System (Example of Scope of Information Security Management System Statement)
- Prepare detailed Information Security Policies (Example of Information Security Policy)
- Define Key Roles and Responsibilities
- The Planning Phase
- Define a method of Risk Assessment
- (Example of CIA Value Table)
- (Example of Table of Contents for Risk Assessment Document)
- Create an inventory of Information Assets to protect (Example of an Inventory of Information Assets)
- Conduct Risk Assessment
- Identify risks (Example of Risk Identification)
- Evaluate the risks (Example of simple Risk Assessment)
- Identify applicable objectives and controls
- Develop Statement of Applicability (Example of Statement of Applicability)
- Develop a Risk Treatment Plan (Examples of Risk Treatment Plan) (Example of Risk Assessment Document with Assessment Information and SOA Included)
- Set up policy and procedures to control risks
- Establish Information Security Management System Objectives and plan to achieve them
- Define a method of Risk Assessment
- Operational Planning and Controls
- Determine the operational planning and control needs
- Identify Monitoring and Measurement Needs (incl. Calibration)
- Establish Operational Controls and Monitoring
- Develop the mandatory and other Documentation required
- The specific requirements for documented information (Example listing of Information Security Management System Policies and Procedures)
- The specific requirements for retained documents
- Determine and secure the required Resources
- Pre-launch Activities
- Deliver Employee Awareness Training
- Establish Internal and External Communications
- Finalise & issue Information Security Management System Documentation
- Complete Job-specific Training (Example of Employee Training Record incl. competency check)
- Go Live! Implement policies, procedures and Information Security objectives plan
- Deploy Policies
- Implement the Risk Treatment Plan and other Procedures
- Control of nonconforming outputs
- Establish Information Security Incident response processes
- Monitor the effectiveness of the Information Security Management System implementation
- Conduct periodic evaluation of performance and effectiveness of Information Security Management System
- Conduct periodic evaluation of fulfilment of compliance requirements
- Periodic re-assessment of Risk Assessments (incl. after major breach or loss of data)
- Periodic re-planning of Risk Treatment Plan and of Improvement Plans
- Conduct periodic Internal Audits
- Conduct periodic Management Reviews
- Implement Continual Improvement (Example of Improvement Plan outline)
- Prepare for a Certification Audit
- Ask for help
- Appendix A: The Path to ISO 27001:2022 Certification – the 31 Steps
- Appendix B: Typical Documentation
- Policies & Procedures
- Records
- Appendix C: Some Sample Procedures, Records and Tools
- Appendix D: Example of Management Review Record
Free ISO 27001 Gap Analysis Tool
Identify systems or process gaps in your management system that can be improved with our ISO 27001 Gap Analysis tool.
Free Lead Auditor Skills Checker
Try any of our ISO courses to assess the adequacy of your lead auditing skills before signing up for a full course.
Free CPD Logbook
Make the most of your ISO Auditor training by tracking your ongoing professional development with a CPD Logbook.
Download your free copy below to record your learning, monitor your progress, and build clear evidence of your continued competence as an auditor.
Free Sample Lesson
Experience the deGRANDSON e-Training Method for yourself – user-friendly and intuitive – with one of these Free Sample Lesson.
Choose between:
- Option 1: The 5-minute Sample Lesson
- Option 2: The 30-minute Free Sample Lesson
Newsletter Subscription
Get updates on the latest news about ISO management systems or the latest promotional offers. Subscribe for a 10% discount.