ISO/IEC 27035 Incident Management Foundation Certification

The ISO/IEC 27035 Incident Management Foundation training course enables participants to understand the fundamental concepts, principles, and processes involved in Information Security Incident Management based on ISO/IEC 27035.

This course provides practical insight into how organizations prepare for, identify, assess, respond to, and manage information security incidents while supporting cybersecurity resilience, operational continuity, and information security governance.

After successfully completing the training course, participants may sit for the certification exam and apply for the “PECB Certificate Holder in ISO/IEC 27035 Foundation” credential. This certification demonstrates an understanding of the core methodologies, requirements, and management approaches associated with Information Security Incident Management.

Why Should You Attend?

Information security incidents continue to grow in complexity and frequency, making effective incident management a critical component of modern cybersecurity and business resilience strategies.

The ISO/IEC 27035 Incident Management Foundation training course helps participants understand how organizations establish structured incident management processes to detect, respond to, and recover from cybersecurity incidents efficiently and effectively.

Participants will gain practical knowledge related to:

Information Security Incident Management concepts and principles
Incident detection and response processes
Incident assessment and classification
Information security event handling
Incident communication and coordination
Cybersecurity resilience and preparedness
Information security governance and compliance

The training course also explains how ISO/IEC 27035 aligns with other cybersecurity standards, frameworks, and regulatory requirements to support enterprise-level incident response and security management initiatives.

Upon successful completion of the course and certification exam, participants may apply for the “PECB Certificate Holder in ISO/IEC 27035 Foundation” credential.

Who Should Attend?

This training course is intended for:

Individuals interested in Information Security Incident Management processes
Professionals seeking foundational knowledge of incident management principles
IT professionals and cybersecurity practitioners
Individuals pursuing careers in Information Security Incident Management
Security team members responsible for incident handling and response
Professionals involved in cybersecurity governance and compliance

Learning Objectives

By the end of this training course, participants will be able to:

Understand the basic concepts of Information Security Incident Management
Explain the relationship between ISO/IEC 27035 and other cybersecurity standards and frameworks
Understand incident management process approaches used to manage information security incidents effectively
Recognize the importance of incident response planning and coordination
Support organizational cybersecurity resilience and preparedness initiatives

Educational Approach

This participant-centered training course combines theoretical instruction with practical discussions, examples, and exercises designed to strengthen understanding of Information Security Incident Management processes.

The course:

Includes lecture sessions supported by practical examples and discussions
Uses exercises designed to reinforce incident management concepts
Provides practice tests structured similarly to the certification exam
Encourages participant interaction and collaborative learning

This practical educational approach helps participants prepare for both the certification exam and real-world incident management responsibilities.

Prerequisites

Basic knowledge of Security Incident Management concepts is preferred.

Prior familiarity with cybersecurity, information security, or IT risk management may also be beneficial.

Course Agenda

Day 1: Introduction to Fundamental Principles and Concepts of Information Security Incident Management Using ISO/IEC 27035

Introduction to ISO/IEC 27035
Information security incident management principles
Incident management lifecycle
Incident detection and classification
Roles and responsibilities

Day 2: Information Security Incident Management Process Approaches and Certification Exam

Incident response processes
Communication and coordination
Incident management best practices
Cybersecurity resilience concepts
Certification examination

Examination

The certification exam fully meets the requirements of the PECB Examination and Certificate Program.

The examination covers the following competency domains:

Domain 1: Fundamental principles and concepts of Information Security Incident Management
Domain 2: Information Security Incident Management

Certificate Requirements

After successfully completing the certification exam, participants may apply for the credential associated with the ISO/IEC 27035 Foundation certification program.

The certification demonstrates an understanding of the methodologies, requirements, and management approaches associated with Information Security Incident Management and ISO/IEC 27035 principles.

General Information

Certificate and examination fees are included in the course price
Participants receive training materials containing more than 200 pages of information and practical examples
Participants who attend the training course receive an attestation of course completion worth 14 CPD (Continuing Professional Development) credits
Candidates who do not pass the exam on the first attempt may retake the exam within 12 months at no additional cost

Training Formats

Self-Study

Self-paced training that includes official course materials, practical examples, exercises, quizzes, and supporting documentation without instructor-led video presentations.

This flexible learning format allows participants to study Information Security Incident Management concepts at their own pace while preparing for certification and strengthening practical cybersecurity incident response knowledge.