Achieving One Of My Biggest Goals: My Journey to Obtaining an ISO/IEC 27001 Information Security Associate Certification
Ho ho ho, it’s the most wonderful time of the year! And it just got even better for yours truly, because three days before Christmas, I took a stroll to catch up with my tech-savvy buddy who’s a mobile app developer. We chatted about how to balance our tech routines, school, skills, and social life before the new year begins. But then, the real surprise came when I received an email from Skillfront, a reputable certification organization. They were offering me an ISO/IEC 27001 INFORMATION SECURITY ASSOCIATE CERTIFICATION worth over $200 for free! Can you believe it? I was so excited, I couldn’t even finish reading the email on the spot. So, I said goodbye to my friend and headed home to register and find out more about this amazing opportunity. Once I got home, I settled in and opened my laptop, using my trusty Brave browser to access my email and follow the instructions to register. And just like that, I was on my way to achieving one of my biggest goals for 2023. Skillfront sent me an exam access code, an audio book, and an e-book to help me prepare.
So, what exactly is an ISO/IEC 27001 INFORMATION SECURITY ASSOCIATE CERTIFICATION? The ISO/IEC 27001 Information Security Associate certification is a professional certification that demonstrates an individual’s knowledge and understanding of the ISO/IEC 27001 standard for information security management systems (ISMS). The certification is awarded by certification bodies that are accredited by the International Organization for Standardization (ISO) or the International Electrotechnical Commission (IEC). To obtain the certification, individuals must pass an exam that tests their knowledge of the standard and its requirements. The exam typically includes multiple-choice questions and may have different levels such as foundation, Practitioner, Lead Implementer and Lead auditor.
Holding the ISO/IEC 27001 Information Security Associate certification is a recognized and respected industry standard and it shows that an individual has the knowledge and skills required to help organisations implement and maintain effective information security management systems. It’s also a good way to demonstrate to employers and clients that an individual has the knowledge and skills to manage information security risks and protect sensitive information. I spent a week studying the following concepts:
- History of ISO/IEC 27001
- Information Security Management Systems and scope and Statement of Applicability(SoA)
- Information security policies
- Information risk assessment process
- Information risk treatment process
- Information security objectives
- Operational planning and control documents
- ISO 27001 audit programs
- ISO 27001 implementation guide
- Roles and responsibilities in organisations according to ISO 27001
It was a lot of information, I literally took the course for over a week and i decided to take the exams on the 7th of January 2023. It was in the evening though everywhere was calm. I went to the exam portal input my access code and email address and boom! i was in. I was scared though but i went in with all it takes to pass the exams. The exams is a 30 multi-choice question slated for 60 minutes. The exams were quite tricky and mind blowing but i finished and also passed the course on my first sitting. I received my certificate and a verifiable badge with my name on it almost immediately. Exciting !
So, if you’re into cybersecurity and information security, I highly recommend taking this course. It’s a great way to understand the frameworks of an information security management system. Thanks for following me on this journey, and happy reading!”
