HSC   Text mode: access to the page content
Hervé Schauer Consultants
You are here: Home > Training courses > ISO 27001 Lead Implementer
Go to: HSC main site
Download the training catalog
Version française
   Training courses   
o Planning
o Organismes de certifications
o Labels des formations
o Certifications et qualifications d'HSC
o Formations universitaires
o E-learning HSC
o ISO 27001
o PHP security
o How to reach us
o Specific inquiries
o Directions to our office
o Hotels near our office
   HSC est certifié OPQF   
logo OPQF
|>|ISO 27001 Lead Implementer  
Training courses
See also...
o Organization of the courses
o Training sessions planning
o ISO 27001 Lead Auditor
o Formation RSSI
o ISO 27005 Risk Manager
o Gestion des mesures de sécurité et norme ISO 27002
o Indicateurs et tableaux de bord de la SSI / ISO 27004
o Certification by LSTI
o Goals
o International recognition
o Duration
o Instructor(s)
o Pre-requisite for attendants
o Teaching method
o Related courses
o Material
o Agenda
o Methods of inscription

Dates of the coming sessions:
> 21-25 November 2016 (Paris)
> 23-27 January 2017 (Paris)
> 6-10 March 2017 (Paris)
> 15-19 May 2017 (Paris)
> 3-07 July 2017 (Paris)
> 18-22 September 2017 (Paris)
> 20-24 November 2017 (Paris)
> 18-22 December 2017 (Paris)
Dates subject to modification without prior notice. The sessions will only take place if the number of registered attendants is high enough.


International recognition

The training by HSC and the examination by LSTI are internationally recognized, on the same level as the other trainings and examinations available on the market.
For more information, see the page Certification by LSTI .


5 days.


This training is given by two to three consultants among the following:

  • Julien Levrard (Julien.Levrard@hsc.fr)
    • ISO27001:2013 Lead Auditor certified by KPMG Audit Plc and LSTI
    • ISO27001:2013 Lead Implementer certified by LSTI
    • ISO27005:2011 Risk Manager by LSTI
    • ITIL V3 certified
    • CISA certified by ISACA
    • QSA certified by PCI Council
  • Alexandre Fernandez-Toro
    • BS7799 Lead Auditor certified by BSI
    • ISO27001:2013 Lead Auditor certified by LSTI
    • ISO27001:2013 Lead Implementer certified by LSTI
    • ISO27005:2011 Risk Manager certified by LSTI
    • CISSP, ITIL foundations et ITIL practitioner certified
    • ISMS auditor for several certification organisations
    • Former member of the "club EBIOS"
    • Member of the "Club 27001"
    • Registered as ISMS Provisional Auditor by the IRCA under the number 01186952 (International Register of Certificated Auditor)
  • Hervé Schauer (Herve.Schauer@hsc.fr)
    • ISO27001:2013 Lead Auditor and Lead Implementer certified by LSTI
    • ISO27005:2011 Risk Manager certified by LSTI
    • ISO22301 Lead Auditor certified by LSTI
    • CISSP, ISC2 certified
    • GSLC (GIAC Security Leadership Certification) certified by GIAC
    • Participating to the normalization in security at AFNOR since 1990 and at CN27 since its creation in 1993
    • Member of the ISO 27001 group of the Clusif
    • Host of Club 27001
  • Quentin Gaumer (Quentin.Gaumer@hsc.fr)
    • ISO27001 Lead Auditor certified by LSTI
    • ISO27001 Lead Implementer certified by LSTI
    • ISO27005 Risk Manager certified by LSTI
    • GWEB (Web Application Defender) certified by GIAC

Pre-requisite for attendants

Teaching method

Lecture, with numerous examples of practical applications based on the experience feedback of HSC and our customers, given by ISO 27001 Lead Auditor consultants.

Related courses

ISO 27001 Lead Auditor


The course is delivered in french and in french only. Course material include slides in French (about 330), exercices in French (about 30 pages), exercices corrections in french (about 10 pages), and all others documents in french or english necessary for the course.


  • Welcome of participants
    • General description of the course
    • Introduction to management systems
  • ISO 27001 standard presentation
    • ISMS notion (Information Security Management System)
    • PDCA (Plan-Do-Check-Act) model
    • Records
    • Assets inventory
    • Risk assessment
    • Risk treatment
  • ISO 27001 certification process
  • ISO 27002 (formerly ISO 17799) standard presentation
    • Categories of controls
    • Organizational controls
    • Technical controls
  • ISO 27005 risk management
    • Introduction to ISO 27005 standard
    • Vocabulary : risk, threat, vulnerability
    • Risk management process
    • Context establishment
    • Risk assessment
      • Risk identification
      • Risk estimation
      • Risk evaluation
    • Risk treatment
    • Risk acceptance
    • Risk communication
    • Risk monitoring and review
  • ISO 27001 implementation
    • Project and project manager
    • Training and information
    • Gap analysis
    • Perimeter choice
    • Basics
    • Risk Assessment
    • Documentation
    • Procedures explicitly mandatory in ISO 27001
    • Procedures implicitly needed
    • Controls selection
    • Internal audit and actions following
    • Communication
    • Common mistakes
    • Tools
  • ISO 27001 Indicators
    • Choice of indicators
    • ISO 27004 Information Security Measurement Programme
    • Conformity vs performance indicators
    • Roles and responsabilities
    • Identification, measurement, analysis and use of indicators
  • Exercises for examination preparation
  • Examination

Methods of inscription

For registering an HSC course, please contact our training department by phone : +33 141 409 704 or by email at formations@hsc.fr, with first and last name of every student, your postal address and your company VAT number. Thoses informations enable us to send your the training agreement. The training agreement must be return agreed with signature and company stamp with you purchase order, at least 6 days before the course. The purchase order should precise your billing address and our payment regulations : net 30 days from our invoice date. Registration is completed as soon as we received those two documents.

Last modified on 14 January 2016 at 11:30:48 CET - webmaster@hsc.fr
Mentions légales - Information on this server - © 1989-2013 Hervé Schauer Consultants