ISO 27035 Lead Incident Manager — Information Security Incident Management

During this accelerated 3-day ISO 27035 Lead Incident Manager course, you’ll gain the expertise to design, implement, and manage an effective information security incident management plan aligned with ISO/IEC 27035.

Led by expert instructors, this course takes a structured approach to incident response, covering incident detection, assessment, response, and recovery. Through hands-on exercises and real-world case studies, you’ll develop the skills to establish, monitor, and continually improve an Incident Management System, ensuring your organization can effectively handle security breaches and cyber threats.

Earning the PECB ISO 27035 Lead Incident Manager certification validates your ability to apply incident management best practices in real-world scenarios, reducing risk and enhancing organizational resilience.

Throughout this course, you'll learn how to:

• Explain the fundamental principles of incident management
• Develop and implement effective incident response plans tailored to the organization's needs and select an incident response team
• Conduct thorough risk assessments to identify potential threats and vulnerabilities within an organization
• Apply good practices from various international standards to enhance the efficiency and effectiveness of incident response efforts
• Conduct post-incident analysis and identify lessons learned

With Firebrand’s Lecture | Lab | Review methodology, you’ll certify at twice the speed of traditional training while gaining access to official courseware, expert instruction, and an immersive, distraction-free learning environment.

As part of the course, you’ll take the ISO 27035 Lead Incident Manager exam, backed by our Certification Guarantee for added confidence. Additionally, upon certification, you’ll earn a digital badge, enhancing your professional credibility in quality management.

Why Choose Firebrand?

• Flexible Delivery Options: Choose between classroom-based training or virtual instructor-led sessions, with delivery options to suit your needs and schedule
• Comprehensive Certification Preparation: Covers the PECB exam topics with integrated study materials and practice exercises
  Interactive Learning: Includes workshops, case studies, and group discussions to apply concepts practically
• Experienced Instructors: Led by certified trainers with extensive industry experience

Audience

This training course is intended for:

• Managers or consultants seeking to expand their knowledge of information security incident management
• Professionals seeking to establish and manage effective incident response teams (IRTs)
• IT professionals and information security risk managers seeking to enhance their knowledge in information security incident management
• Members of incident response teams
• Incident response coordinators or other roles with responsibilities for incident handling and response 

• Training Course Objectives and Structure
• Standards and Regulatory Frameworks
• Fundamental Concepts of Incident Management
• Information Security Incident Management
• Context Establishment
• Policies and Procedures
• Risk Management
• Incident Management Plan and Incident Management Team
• Internal and External Relationships
• Technical and Other Support
• Information Security Incident Awareness and Training
• Testing
• Monitor Systems and Networks
• Detect and Alert
• Information Collection for Incidents
• Report Information Security Events
• Information Security Event Assessment
• Resolve Information Security Incidents
• Containment, Eradication, and Recovery
• Lessons Learned
• Monitoring, Measurement, Analysis, and Evaluation
• Continual Improvement

At the end of this course, you'll sit the PECB Certified ISO/IEC 27035 Lead Incident Manager examination, covered by our Certification Guarantee.

• Duration: 180 minutes (3 hours)
• Format: Multiple-choice questions, open book
• Number of Questions: 80
• Pass Score:70%
• CPD points available: 31 CPD points available upon completion
• Digital Badge: PECB have partnered with Credly to offer you the chance of earning a digital badge upon completing your certification.

Competency domains covered during the examination include:

• Domain 1: Fundamental principles and concepts of information security incident management
• Domain 2: Information security incident management process based on ISO/IEC 27035
• Domain 3: Designing and developing an organizational incident management process based on ISO/IEC 27035
• Domain 4: Preparing and executing the incident response plan for information security incidents
• Domain 5: Implementing incident management processes and managing information security incidents
• Domain 6: Improving the incident management processes and activities

After successfully completing the exam, you can apply for your credential. You will receive a certificate once you meet the requirements related to the specified credential. 

The main requirement for participating in this training course is having a general knowledge of incident management processes, information security principles, and the ISO/IEC 27000 family of standards.

Your accelerated course includes:

• Accommodation *
• Meals, unlimited snacks, beverages, tea and coffee *
• On-site exams **
• Exam vouchers **
• Practice tests **
• Certification Guarantee ***
• Courseware
• Up-to 12 hours of instructor-led training each day
• 24-hour lab access
• Digital courseware **

* For residential training only. Accommodation is included from the night before the course starts. This doesn't apply for online courses.
** Some exceptions apply. Please refer to the Exam Track or speak with our experts.
*** Pass first time or train again free as many times as it takes, unlimited for 1 year. Just pay for accommodation, exams, and incidental costs.

Seven reasons why you should sit your course with Firebrand Training

• Two options of training. Choose between residential classroom-based, or online courses
• You'll be certified fast. With us, you’ll be trained in record time
• Our course is all-inclusive. A one-off fee covers all course materials, exams**, accommodation* and meals*. No hidden extras.
• Pass the first time or train again for free. This is our guarantee. We’re confident you’ll pass your course the first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
• You’ll learn more. A day with a traditional training provider generally runs from 9 am – 5 pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day of quality learning time, with your instructor
• You’ll learn faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
• You’ll be studying with the best. We’ve been named in the Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified over 135,000 professionals

*For residential training only. Doesn't apply for online courses
**Some exceptions apply. Please refer to the Exam Track or speak with our experts