How training proved to be a major factor in the success of my ISO27001 ISMS project

When I was asked to implement an ISO27001-compliant Information Security Management System (ISMS) at a previous company I worked for, I thought to myself, this will be the easiest project I have ever done.  Not only was I completely wrong, but the fundamental necessity to possess the information security knowledge and skills in order to succeed, dawned on me at the most inconvenient time.

I realised very quickly that I just didn’t have the understanding and experience required in order to embark on such a huge task alone. I had read a few ISO27001 books to get some insight into the standard requirements, but I needed more than that in order to meet my deadline.

After a lot of trolling through Google, I decided to enrol myself on professional training. I went on the IT Governance ISO27001 Certified ISMS Foundation Training course, quickly followed by the ISO27001 Certified ISMS Lead Implementer Masterclass. This was one of the best decisions I have made and I can’t stress how important training is for anyone involved in an ISO27001 ISMS project.

I quickly realised how my inexperience (before attending the courses) might have led me to wrongly implement certain aspects of my ISMS project. This course made it clear to me that any organisation (including mine) could be performing so many of their daily tasks incorrectly unless they took proper guidance and really learnt about the subject as much as they can. So many organisations are oblivious to the very obvious breaches in information security. The ISO27001 Certified ISMS Foundation Training course taught me about the essentials and how to apply best practice approach to information security.

I have no doubt that I would not have succeeded in this project without spending the time acquiring the right training. To complement my training, I continued reading specialist ISO27001 publications and I particularly found the IT Governance: International Guide to Data Security and ISO27001/ISO27002 book useful, which was given to me as part of the Lead Implementer course.

Being on the ISO27001 Certified ISMS Lead Implementer Masterclass not only gave  me a step-by-step guide to ISMS implementation, but the liaison with the trainer and the other attendees provided me with insight as to  how other businesses tackle information security. I wouldn’t have had this opportunity to enrich my knowledge if I was sitting at my desk.

Finally, I now have no doubt that undertaking ISO27001 ISMS training before or during ISO27001 implementation is a major key to my success.

Enroll yourself on the IT Governance ISO27001 Certified ISMS training courses now to ensure successful ISO27001 implementation.  Book online at You can also contact IT Governance on 0845 070 1750 or by email to