This website uses cookies. View our cookie policy
United Kingdom
Select regional store:
ISO 27001 Certified ISMS Lead Implementer Training Course

ISO27001 Certified ISMS Lead Implementer

SKU: 291

Developed by global ISO 27001 experts Alan Calder and Steve Watkins, and drawing on their industry-leading implementation guide IT Governance – An International Guide to Data Security and IS027001/ISO27002, this three-day course covers all nine of the key steps involved in planning, implementing and maintaining an ISO 27001-compliant ISMS.


This certificated, practitioner-led course equips you with the skills to lead an ISO 27001-compliant information security management system (ISMS) implementation project. Learn from the developers of the original ISO27001 Lead Implementer course and get to grips with the nine steps to implementing an ISMS.


Three days


See Course Agenda below for timetable.
Also available as a Live Online training course.


Achieve the ISO27001 Certified ISMS Lead Implementer (CIS LI) qualification (ISO 17024-certificated).

Other options:



New dates added


Save 15% with our Combination Course


“An excellent course. A perfect balance between 'teaching' and active group participation. Course content was both comprehensive and easy to digest, such that I have already been able to put the learning immediately into practice within my organisation."

Georgina Smith, Appleton Consultants

How to Book:

Simply book online to receive your booking confirmation and full joining instructions within 48 hours. We accept purchase orders from local authorities, government departments and other public-sector organisations, and will consider account facilities for large corporate customers. See our payment options page for details.

Book today

Course Locations

Price: £1,795.00
ex vat
call to book via purchase order
Price: £1,795.00
ex vat
call to book via purchase order
Price: £1,795.00
ex vat
call to book via purchase order


Download product summary


Course highlights


Designed by experts

Designed by the team that led the world’s first successful ISO 27001 implementation project.


Delivered by professionals

Real-world practitioners show you how to tackle an ISMS project from start to finish.


Nine steps to success

Learn about the nine steps to ISO 27001 success.


Hands-on study

Participate in group discussions, practical exercises and case studies throughout the course.


Fast-track to certification

Achieve a globally recognised ISO 27001 qualification certificated to ISO 17024 in just three days.


100% occupancy

Our lead implementer course is always fully booked.



Improve your professional development and build your career path

Achieve the ISO 17024-certificated ISO27001 Certified ISMS Lead Implementer (CIS LI) qualification awarded by IBITGQ (based on passing an exam).

This course is also accredited by the Institute of Information Security Professionals (IISP) and satisfies the IISP Skills Framework requirements at Level 1: A1, A2, A3, A4, A5, A6, A7, B1, B2, G1, H1 and H2.

The CIS LI qualification is acknowledged by the Payment Card Industry Security Standards Council (PCI SSC) as an approved qualification that meets the requirements of an individual applying to become a Payment Card Industry Data Security Standard (PCI DSS) Qualified Security Assessor (QSA).


Course Agenda

Course Timetable:

  • Day 1: 09.30 – 17.00
  • Day 2: 09.00 – 17.00
  • Day 3: 09.00 – 17.00

What will you learn on this course?

  • Securing senior management commitment and building the business case.
  • The role and structure of an information security policy.
  • How to determine the scope of your ISMS based on the requirements of ISO 27001.
  • Developing a management framework.
  • How to structure and manage your ISO 27001 project.
  • How to allocate roles and responsibilities for your ISO 27001 implementation.
  • The definition of risk in ISO 27001 and options for risk assessments under the Standard.
  • The benefits of, and key issues when selecting, a risk assessment tool.
  • How to carry out an information security risk assessment – the core competence of information security management.
  • The Statement of Applicability (SoA), and justifications for inclusions and exclusions.
  • Reviewing your existing controls and mapping controls to Annex A of ISO 27001.
  • The importance of an effective communication strategy.
  • Writing policies and producing other critical documentation.
  • The importance of staff and general awareness training.
  • The key elements of management review.
  • How to manage and drive continual improvement under ISO 27001.
  • How to prepare for your ISO 27001 certification audit.
  • Important information to ensure that you pass the audit first time.

CIS LI examination

Take the CIS LI examination at the end of the course – a 90-minute, multiple-choice, ISO 17024-certificated exam set by IBITGQ.

There is no extra charge for taking the exam at the end of the course.


Please note that all IBITGQ exams are now online exams, so you will need to bring a 'pop-up enabled' laptop/tablet to the venue.
Full details on how to access the exam will be provided by email 1-2 days before sitting the exam.


Exam results and certificates

  • Where exams are taken online (either remotely or by computer in the classroom), provisional exam results will be available immediately on completion of the exam. Confirmed exam results will be issued within 10 working days from the date of the exam.
  • For both online and paper exams, certificates for those who have achieved a passing grade will be issued within 10 working days from the date of the exam.
  • Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format; please note that hard copy exam certificates are not issued.



This course enables delegates to qualify for 21 CPD/CPE credits, and fits well with the CISSP and SSCP Continued Professional Education Programme.


Who should attend this course?

Anyone involved in information security management, writing information security policies or implementing ISO 27001, either as a lead implementer or as part of an implementation team.

This course also meets the requirements of the PCI SSC for additional QSA qualifications and, in the UK, is covered by the MoD’s ELCAS scheme.


Entry requirements

There are no formal entry requirements. However, it is assumed that you will have a basic knowledge of ISO 27001 gained through practical experience, reading the standard, or by attending the ISO27001 Certified ISMS Foundation Training Course.


Additional information

The course includes:

  • A professional training venue with lunch and refreshments;
  • Comprehensive documentation (digital copy provided as a PDF file);
  • The CIS LI examination;
  • A certificate of attendance; and
  • A guarantee that it will run, as we never cancel a course.


ISO 27001 Learning Pathway

This course is part of our ISO 27001 Learning Pathway, which also includes the ISO27001 Certified ISMS Foundation, Risk Management, Lead Auditor and Internal Auditor courses.


You may also be interested in:

Customer Reviews

(27# of Ratings:)
1 people found this comment helpful
5 did not
Was this comment helpful?
Great course. Brilliant instructor
0 people found this comment helpful
6 did not
Was this comment helpful?
This was an awesome course! Very much enjoyed having Mr. Calder as the instructor for this course. Learned quite a bit in the three days and looking forward to leading implementations!
0 people found this comment helpful
6 did not
Was this comment helpful?
Very well led course which covered the material at the right pace and with plenty of added, real world examples to keep the interest and relevance. Venue was also very good with a plentiful supply of food and drinks.
0 people found this comment helpful
6 did not
Was this comment helpful?
Great course. A dry subject made interesting with plenty of interaction with the tutor.
0 people found this comment helpful
6 did not
Was this comment helpful?
Excellent over all experience. Enjoyed the training, the material and the warmth (yet professional) of the delivery. Got a lot out of the course and my main objective was met. Very very happy customers. Will definitely recommend ITG and attend classes again. Thanks ever so much Steve. Fran
1 people found this comment helpful
5 did not
Was this comment helpful?
Great result in my CIS LI course, thanks for the fantastic materials, insights and real world examples
0 people found this comment helpful
6 did not
Was this comment helpful?
Very good course, highly motivated instructor with long term experience and "dirt on the hands".
0 people found this comment helpful
6 did not
Was this comment helpful?
Very informative and well presented course - everything I needed it to be! Steve Watkins ran the course very well and was incredibly knowledgeable. Excellent!
2 people found this comment helpful
4 did not
Was this comment helpful?
IT Governance is a reservoir of knowledge, experience and experts in knowledge transfer. I took the course in 2014 and it was value for money. Their method of teaching made a very good impression. My experience? 5 STAR!!!!!
2 people found this comment helpful
4 did not
Was this comment helpful?
5* course. Great content, pace and delivery. Worth every penny! 10/10 Piers.
Showing comments 1-10 of 26 (Next 10)
Click Here to see all comments