ISMP training - Information Security Management Professional (EXIN)

3 days Classroom Nederlands

Sharpest price in just 2 steps

Requesting more information and/or the current price of this training is easy. We take into account any ongoing promotions, subsidies, or relationship discounts.

Why ISMP training - Information Security Management Professional (EXIN) at TSTC?

You are training with an accredited EXIN Training Partner.
Experienced Dutch-speaking trainer who enriches the training with useful practical examples.
Train with confidence. Registered? Then we ensure that this training will go ahead 100% (except in cases of force majeure).
Success guarantee: in case of failing unexpectedly within one year, participate in the training again free of charge.
TSTC is the Dutch specialist in training in (cyber)security and information security with a program of more than 50 different titles. We have a passion for security and education and our entire team is dedicated to helping you achieve your learning goals!
Hybrid training where you decide whether to attend the training in person, Live Online, or in a combination of both.

Training Summary

Vendor:

EXIN
Training Language:

Nederlands
Duration:

3 days
Category:

Information Security (Tactical & Strategic)

Security Management (broad)

Description

This ISMP training is a continuation of the ISFS training and is based on ISO/IEC 27001 and 27002 with a detour to the risk model of ISO 27005. It addresses the management aspects that need to be regulated in the field of security from the perspective of the organization, the customer, and suppliers. It gives substance to this by deepening risk management aspects and ensuring through measures (controls). The training is particularly suitable for anyone who needs to understand the governance aspects of security and know how to demonstrate that compliance with applicable laws and regulations is adequately met.

You will learn how to classify information based on business value and how to establish an effective information security management system. Additionally, you will gain insight into assessing suppliers and ensuring security within outsourced processes. The training extensively covers identifying, analyzing, and managing risks, including developing substantiated business cases and reports. You will learn how to select appropriate control measures based on the BIV principles and the various phases within the incident cycle.

You will also develop skills in drafting policies, implementing incident management, and increasing security awareness within the organization. Finally, you will gain insight into security architectures, IT infrastructures, and physical and human-oriented measures, so you can approach information security integrally and apply it effectively in practice.

Certification

The training prepares you for the corresponding and included EXIN Information Security Professional based on ISO/IEC 27001 (ISMP) exam from EXIN. This exam lasts 90 minutes and contains 30 multiple-choice questions. To obtain the ISMP certification, a number of practical assignments are also required, which can be completed during the training and between the course days.

Training Requirements

Deze training is bestemd voor iedereen die vanuit zijn/haar functie is betrokken bij onder andere de implementatie, evaluatie van en rapportage over informatiebeveiliging. Te denken valt aan rollen als:
Manager Informatiebeveiliging / Security Manager
Information Security Officer
Compliance manager
Legal manager
Projectmanager
Riskmanager
Beveiligingsprofessionals

Materials

Hardcopy boek 'Information Security Management Professional (ISMP) based on ISO 27001 Courseware - 4th revised'
EXIN Information Security Management Professional based on ISO/IEC 27001 Body of Knowledge
Een EXIN ISMP examenvoucher

Training Content

Perspectieven op informatiebeveiliging

Zakelijk belang van informatiebeveiliging

Klantperspectief op governance

Verantwoordelijkheden van leveranciers bij security assurance

Risicomanagement

Principes van risicomanagement

Beheersen van risico’s

Omgaan met restrisico’s

Informatiebeveiligingsmaatregelen (controls)

Organisatorische maatregelen

Technologische maatregelen

Fysieke maatregelen en mensgerichte maatregelen

Description

Certification

Training Requirements

Deze training is bestemd voor iedereen die vanuit zijn/haar functie is betrokken bij onder andere de implementatie, evaluatie van en rapportage over informatiebeveiliging. Te denken valt aan rollen als:
Manager Informatiebeveiliging / Security Manager
Information Security Officer
Compliance manager
Legal manager
Projectmanager
Riskmanager
Beveiligingsprofessionals

Materials

Hardcopy boek 'Information Security Management Professional (ISMP) based on ISO 27001 Courseware - 4th revised'
EXIN Information Security Management Professional based on ISO/IEC 27001 Body of Knowledge
Een EXIN ISMP examenvoucher

Training Content

Perspectieven op informatiebeveiliging

Zakelijk belang van informatiebeveiliging

Klantperspectief op governance

Verantwoordelijkheden van leveranciers bij security assurance

Risicomanagement

Principes van risicomanagement

Beheersen van risico’s

Omgaan met restrisico’s

Informatiebeveiligingsmaatregelen (controls)

Organisatorische maatregelen

Technologische maatregelen

Fysieke maatregelen en mensgerichte maatregelen

I am taking this next step in my lifelong learning journey.

What Can I Learn After The ISMP training - Information Security Management Professional (EXIN)?

Classifying information based on business value.
Assessing and selecting suppliers based on security measures.
Explain and apply the principles of risk analysis.
Classify control measures based on confidentiality, integrity, and availability (CIA).
Distinguish and apply different risk strategies.
Establishing policies and procedures for information security.
Establishing roles and responsibilities for information security.
Explaining the importance of security services within IT environments.
Implement security measures throughout the entire employee lifecycle.

Explain the characteristics of an information security management system.
Recognizing and applying security aspects within service management processes.
Identifying risks for classified information assets.
Selecting appropriate measures based on phases in the incident cycle.
Developing business cases for the implementation of security measures.
Implementing and supporting incident management processes.
Contributing to the development and testing of a business continuity plan.
Understanding the role of security components within IT infrastructures.

Explain the importance of information governance in outsourcing.
Support compliance activities within the organization.
Calculating and prioritizing risks based on impact and likelihood.
Apply relevant guidelines when implementing control measures.
Preparing reports based on conducted risk analyses.
Increase security awareness within the organization and execute campaigns.
Explain the purpose and functioning of security architectures.
Advise appropriate measures for physical access security.

Schedules

This training is scheduled as follows in the coming period. Missing a date? Feel free to contact us.

Date: 15 - 17 juli 2026

Location: TSTC Veenendaal - Klassikaal & Live Online

Request current price

Date: 30 september - 2 oktober 2026

Location: TSTC Veenendaal - Klassikaal & Live Online

Request current price

Date: 16 - 18 december 2026

Location: TSTC Veenendaal - Klassikaal & Live Online

Request current price

Date: In overleg

Location: TSTC Veenendaal - Klassikaal & Live Online

Request current price

Learning paths

This training can also be taken as part of the below learning path(s). If you want to follow multiple titles from a learning path, please contact our advisors for a suitable bundle offer.

Expert

Intermediate

Fundamentals