ISO 27001 Lead Auditor information security management
iso 27001 information security |
nist cybersecurity framework training |
information security management |
cissp online training |
online cisa certification course |
online cisa exam course |
iso iec 27001 auditing, iso iec 27001 deployment, iso iec 27001 consulting, computer science, iso iec 22301, iso iec 50001, information assets, information technology learning outcomes, iso iec 22301, iso iec 50001, sensitive data management systems used in cloud computing, business continuity management information used for application security certification program, data center, iso iec 22301, iso iec 50001, 27001 iso iec, business continuity
Internal Controls Architect
Advance your career. Get certified as an expert in designing and operating ISO 27001 information security management.
- You are here:
- Home
- Services
- Professional Certification Programs
- NIST Cybersecurity / ISO 27001 Cybersecurity
- Certified ISO 27001 Internal Controls Architect
Certified ISO 27001 Internal Controls Architect
Building upon the foundation understanding of the ISO 27005 risk management framework validated by the Certified Internal Controls Risk Analyst credential, the ISO 27001 Certified Internal Controls Architect (CICA) certification certifies your ability to develop the formal structure, governance, and policy of an ISO 27001 conforming Information Security Management System (ISMS).
Furthermore, the CICA certification ensures that you are qualified to develop strategic objectives according to core ISO 27001, 27002, 27003, and 27005 best practices.
Certification Track and Process
Building upon the foundation understanding of the ISO 27005 risk management framework validated by the Certified Internal Controls Risk Analyst credential, the ISO 27001 Certified Internal Controls Architect (CICA) certification certifies your ability to develop the formal structure, governance, and policy of an ISO 27001 conforming Information Security Management System (ISMS).
Furthermore, the CICA certification ensures that you are qualified to develop strategic objectives according to core ISO 27001, 27002, 27003, and 27005 best practices.
Upon completion of this training and certificate program, you will:
- be equipped with knowledge and skills required to develop, manage, monitor, and improve an Information Security Management System in line with the current ISO 27001 and 27002 standards of best practice;
- expand your information security competency;
- increase your credibility through gaining international recognition; and
- improve your résumé and help to increase your earning potential.
Getting certified is easy, and can be accomplished completely online. The ISO 27001 CICA™ certification is available to qualified candidates who:
- Are a member of CIS in good standing.
If you are not already an Associate member of the CIS certification student body, you must first become a member to pursue the CICA credential. - Attend the required course, live or online. Prerequisite training for ISO 27001 CICA certification eligibility includes:
- Policy Workshop: ISO 31000 Enterprise Risk Management
- Policy workshop: ISO 27001 Information Security Management
- Pass the CICA Exams. For CICA certification, candidates must pass exams #RM101, #ISMS101 and #ISMS102. Exams are administered online and can be taken at your convenience at your home or work through the CIS eLearning Center, where your progress and score are monitored and recorded centrally. Your exam results are provided automatically upon completion of your exam.
- Complete and submit your ISO 27001 CICA certification application to the Certification Department at certification@certifiedinfosec.com. Certification applications are available for download at www.certifiedinfosec.com/services/certification-programs/cis-professional-certification-program/certification-kit-brochures-and-applications.
Your digital credentials
You will officially become certified (certificated) once your exam results and required documentation are validated and approved by the certification committee.
Your digital credential certificates and badges will be processed and emailed to you within 10 business days following the receipt of the required documentation. Learn more about CIS' digital certificates and badges.
Certification maintenance and renewal requirements can be viewed at www.certifiedinfosec.com/services/certification-programs.
Upgrade Path: Certified ISO 27001 Lead Auditor™
Certified Information Security is authorized to provide all required training and exams for ISO 27001 CICA certification. ISO 27001 CICA certification candidates must successfully complete:
ISO 27001 CICA certification requires successful completion of three exams:
Exam #RM101 maps to ISO/IEC 31000, 31010, and 27005 risk management content areas taught in "Policy Workshop: ISO 31000 Enterprise Risk Management."
- Required for CICRA, CICA, CBCS, CBCA, and CBCM certifications.
- Number of questions: 65
- Passing score: 75%
- Time limit: 70 minutes
RM101 Content Areas
- Context establishment
- Risk assessment
- Risk treatment
- Risk acceptance
- Risk communication
- Risk monitoring and review
Exam #ISMS101 maps to ISO/IEC 27001, 27002, and 27003 content areas associated with ISMS planning and strategy, as taught in "Policy Workshop:ISO 27001 Information Security Management."
- Required for ISO 27001 CICA and ISO 27001 Lead Auditor certification
- Number of questions: 65
- Passing score: 75%
- Time limit: 70 minutes
Content Areas
- Developing an ISMS program
- Project managing a successful ISO 27001 internal controls implementation
- Establishing the ISMS organization
- Core ISO 27001 and 27002 best practices relating to:
- InfoSec policy and scope
- Risk assessment and Statement of Applicability
- Understanding the organization
Exam #ISMS102 maps to ISO/IEC 27001 and 27002 content areas associated with ISMS deployment, monitoring, exercising, and maintenance, as covered in "CIS Policy Workshop: ISO 27001 Information Security Management."
- Required for CICA and ISO 27001 Lead Auditor certification
- Number of questions: 65
- Passing score: 75%
- Time limit: 70 minutes
Content Areas
Core ISO 27001 and 27002 best practices relating to:
- External party controls
- Asset management
- Human Resources security
- Physical and environmental security
- Equipment security
- Communications and operations management
- Malicious software controls
- Network security management and media handling
- Business continuity management
- Compliance
- Exchange of information
- Electronic commerce, e-mail and internet security
- General, network, operating system, and application access control
- Systems acquisition, development and maintenance
- Cryptographic controls
- Development and support process security
- Monitoring of information security and incident management
- Preparing for an ISO 27001 audit
Qualified experience for Certified ISO 27001 CICA™ certification
Certified ISO 27001 CICA is a mid-level certification for cyber security professionals with at least two years of qualified experience. This certification maps to and fulfills all ISO/IEC 27001 competence requirements. General characterization for eligible experience:
- Developing an ISMS program
- Project managing a successful ISO 27001 internal controls implementation
- Core ISO 27001 and 27002 best practices relating to:
- InfoSec policy and scope
- Risk assessment and Statement of Applicability
- External party controls
- Asset management
- Human Resources security
- Physical and environmental security
- Equipment security
- Communications and operations management
- Malicious software controls
- Network security management and media handling
- Monitoring of InfoSec and incident management
- Business continuity management
- Compliance Exchange of information
- Electronic commerce, e-mail and internet security
- General, network, operating system, and application access control
- Systems acquisition, development and maintenance
- Cryptographic controls
- Development and support process security
- Monitoring of cyber security and incident management
- Business continuity management
- Compliance
- Operations audit
Preparing for Certified Information Security's professional certification exams #RM101 and #ISMS10 is serious business. This is where I can help you. If you first successfully complete:
Certified Information Security guarantees your success in passing certification exams #RM101, #ISMS101, and #ISMS102. If you do not pass exams #RM101, #ISMS101, and #ISMS #102 on your first attempt after completion of your required course and practice exams, Certified Information Security will allow you to re-test at no additional charge until you successfully pass your certification exams. |
It’s convenient!
Certified Information Security provides the training and credentialing you need to become recognized as an authority in information security governance and risk management. You choose the method of delivery: online through our secure website, or in-person at a publicly available course or privately at your facility. We take care of the rest – from administration, to record keeping, to providing certificates of completion and certification.
Online students have the additional convenience of taking courses whenever they want without the need to travel or disrupt their busy schedules. Our program allows users to start and stop without losing their place or data. Learning and certifying expertise has never been so easy!
How to get started - two alternatives
- If your employer is paying for your training and certification, we recommend purchasing a complete ISO 27001 Certified Internal Controls Architect (CICA) certification package voucher that includes all required resources, including membership in the CIS Body of Certified Professionals, all required training programs, all recommended practice exams, and the required certification exam. This allows your employer to purchase and pay all of your necessary resources at once, while still giving you flexibility of when to use your training, practice exams, and certification exams later.
- "Pay-as-you-go" by purchasing your membership in the CIS Body of Certified Professionals, training, recommended practice exams, and the certification exams as you need them. Start by purchasing training, and then purchase practice exams when you are ready. After you complete your practice exams, you then purchase your certification exam.
A breakdown of the costs are as follows:
1. Required CIS Membership Application Fee & Membership Dues: $100.00 Learn more
2. Required Training
Two Required Courses | Online On-Demand Self-Study |
CIS Policy Workshop: ISO 31000 Enterprise Risk Management |
$399.95 Learn more |
- AND - |
|
CIS Policy Workshop: ISO 27001 Information Security Mgmt. |
$299.95 Learn more |
3. Optional Online Practice Exams for all exams (RM101 and ISMS101): $150.00 Learn more
4. Required Online Certification Exams (RM101 and ISMS101): $200.00 Learn more