ISO/IEC 27400 Lead Manager

ISO/IEC 27400 Lead Manager is an advanced training course that provides the knowledge and practical skills required to lead and manage the implementation of IoT security controls in accordance with ISO/IEC 27400. The course focuses on protecting connected systems, devices and data through structured governance, risk management and continual improvement.

The IoT landscape is expanding rapidly, introducing new technologies and increasing security risks. As devices become more interconnected, organizations must implement effective security and privacy controls to address emerging threats and regulatory expectations.

This course covers the IoT life cycle, asset management, risk management, incident response and continuous improvement. Through practical exercises and real-world discussions, participants develop the competence needed to strengthen organizational security and safeguard sensitive data across IoT environments.

Course objectives

By the end of this training course, participants will be able to:

  • Explain the fundamental concepts and principles of IoT security and privacy
  • Evaluate the organization’s context and define roles and responsibilities for IoT security
  • Implement asset management practices specific to IoT devices and systems
  • Identify, assess and manage risks associated with IoT systems
  • Implement security and privacy controls for IoT service providers, developers and users
  • Establish procedures for detecting, reporting and responding to IoT-related incidents

Target audience

This course is intended for:

  • Professionals responsible for IoT security and privacy
  • Managers overseeing IoT infrastructure and associated risks
  • Risk and compliance professionals
  • Consultants advising on IoT security and governance
  • IoT service providers, developers and users involved in defining or implementing security controls

Prerequisites

Participants should have a basic understanding of information security, risk management or management systems.

Day 1 – IoT concepts, principles and lifecycle

Introduction to the course objectives and structure, relevant standards and regulatory frameworks, IoT concepts and principles, the IoT life cycle and understanding the organization and its context.

Day 2 – Security roles, asset management and risk management

Information security roles and responsibilities related to IoT, asset management practices for IoT systems and structured risk management approaches.

Day 3 – IoT security and privacy controls

Security controls and privacy controls for IoT systems, blockchain and integrated technologies, and awareness and training programs.

Day 4 – Monitoring, incident management and continual improvement

IoT security and privacy monitoring, incident management, internal audit, management review and continual improvement.

Day 5 – Certification exam

Certification examination.

After passing the exam, you can apply for one of the credentials in the table below. You will receive a certificate once you fulfill all the requirements of the selected credential.

The certification requirements for PECB ISO/IEC 27400 Lead Manager are:

The IoT security program activities should follow best practices and include the following:

  1. Manage an IoT security program
  2. Implement asset management practices specific to IoT devices, systems, and components
  3. Manage risks associated with IoT systems
  4. Implement security and privacy controls
  5. Monitor the IoT security program performance
  6. Manage an IoT security program team

For more information about the PECB certification process, please refer to Certification Rules and Policies.

Exam

The “PECB Certified ISO/IEC 27400 Lead Manager” exam fully meets the PECB Examination and Certification Program (ECP) requirements. It covers the following competency domains:

  1. Domain: Fundamental principles and concepts of IoT security
  2. Domain: IoT security roles, responsibilities, and governance
  3. Domain: IoT risk management
  4. Domain: Selecting privacy and security controls in IoT
  5. Domain: Awareness, training, and IoT security monitoring
  6. Domain: IoT incident management
  7. Domain: IoT security audits, performance measurement, and continual improvement

For specific information about the exam type, languages available, and other details, please visit the List of PECB Exams and Exam Rules and Policies.

Practical information

Duration: 5 days
Price: 27.900 NOK
Language: English
Format: Open course and corporate training

FAQ

Hva lærer jeg på dette kurset?
Du lærer hvordan du leder og styrer implementeringen av IoT-sikkerhetskontroller i tråd med ISO/IEC 27400.

Hva kreves for å delta?
Det anbefales at du har grunnleggende forståelse for informasjonssikkerhet eller risikostyring.

Hvordan gjennomføres eksamen?
Eksamen gjennomføres enten fysisk på kursstedet eller online med voucher og online eksamensvakt.

Hva skjer hvis jeg ikke består første eksamen?
Du får ett gratis nytt forsøk som kan gjennomføres online innen 12 måneder.

Får jeg ekstra tid på eksamen?
Ja, ekstra tid kan gis dersom engelsk ikke er ditt morsmål.

Får jeg ISO-standaren?
Nei, men du får tilgang til en lånestandar som du kan bruke under kurset og eksamen.

Hvilken sertifisering får jeg?
Etter godkjent eksamen oppnår du PECB Certified ISO/IEC 27400 Provisional Manager sertifiseringen. For å få full sertifisering kan det også stilles krav til dokumentert relevant arbeidserfaring. Sjekk tabellen under sertifisering for mer informasjon.

Kan jeg ta dette kurset som e-læring eller selvstudium?
Nei, det er ikke mulig å ta dette kurset som e-læring, men mulig med selvstudie. Send en mail til prosjekt@glassper.no for mer informasjon og bestilling.

See other relevant courses:

Other subject areas:

Other relevant courses

ISO/IEC 27001 Foundation
23. March
2 days
Classroom Virtual
ISO/IEC 27001 Introduction
1 days
Classroom
ISO/IEC 27001 Lead Auditor
13. April
5 days
Classroom Virtual
ISO/IEC 27001 Lead Implementer
13. April
5 days
Classroom Virtual Guaranteed to run