Professional Track
Information Security Manager Track
Develop the capability to implement, manage and continuously improve an effective Information Security Management System aligned with ISO/IEC 27001
Overview
The Information Security Manager Track is designed for professionals who are responsible for establishing and running an Information Security Management System (ISMS) in their organisation. Rather than focusing only on “implementation projects”, this programme covers the full lifecycle: from understanding context and risk through to day-to-day operation, performance evaluation and continual improvement.
Target audience
Practitioners, implementers, and consultants involved in the design, implementation, or improvement of information security management systems (ISMS) aligned with ISO/IEC 27001
Individuals with project or overall responsibility for establishing or evolving an information security management system
Current or aspiring information security managers, ISMS managers, or system owners responsible for operating and steering an existing ISMS
Members of information security, risk, or governance teams who play an active role in shaping, evolving, and continually improving information security management practices
Learning outcomes
In this track, you will acquire the following capabilities.
Design and build an ISMS that actually works
Translate ISO/IEC 27001 into practical, organisation-specific governance and processes
Integrate information security coherently into the organisation’s existing management systems
Take ownership of information security governance
Define roles, responsibilities and decision rights for information security
Position information security clearly within management and operational decision-making
Manage information security risks and performance
Identify and assess information security risks before they turn into incidents or audit findings
Define monitoring and controls that provide management with meaningful security information
Lead audits and improvement with confidence
Prepare and support internal and external ISMS audits professionally
Use audit results, incidents and performance data to drive targeted improvements
Professional positioning
Establish a recognised competence profile as Information Security Manager, with a foundation for senior security roles in ISO 27001-based organisations
Take responsibility for the implementation of a new ISMS or the coordination of an existing system
Act as a competent counterpart to senior management, clients, auditors and certification bodies
Track ID
HAT-IS-M
Duration
~22 days
Language
English
List price
CHF 10,000
Excl. VAT. VAT may apply depending on customer location and status.
Modular system
Reuse of modules across tracks
Previously completed modules are recognized, avoiding duplication when pursuing additional Halderstone tracks.
If you later decide to extend your competence to additional domains and ISO standards, you can earn additional manager credentials without repeating the common core. This allows you to build an integrated competence profile step by step with limited additional effort.
Two credentials with one track
Both credentials are awarded without expiry.
Registered credentials
In addition, track graduates can apply for a Registered credential for this role and discipline. It confirms capability in practice and ensures it remains current over time. Registered credentials require verified professional experience and periodic reassessment.
Registered credentials for this role and discipline
For employers
Understand what this credential signal in hiring and professional practice
Core modules
Shared foundations common to all Manager tracks
Specialization modules
Role-specific modules that deepen your expertise in Information Security Management
Final assessment
Practical and theoretical demonstration of your acquired competence as Information Security Manager
Capstone project
Final exam
Good to know
