Professional Track

Information Security Manager

Develop the capability to implement, manage and continuously improve an effective Information Security Management System aligned with ISO/IEC 27001

Manager

Information Security

ISO/IEC 27001

Information security managers reviewing systems in a professional office setting, representing leadership and governance of an information security management system.

Make information security part of everyday management

By embedding risk-based thinking, governance and operational controls into normal management processes, this track shows how an ISMS remains effective, usable and resilient over time.

Information security managers reviewing systems in a professional office setting, representing leadership and governance of an information security management system.
Information security managers reviewing systems in a professional office setting, representing leadership and governance of an information security management system.

Make information security part of everyday management

By embedding risk-based thinking, governance and operational controls into normal management processes, this track shows how an ISMS remains effective, usable and resilient over time.

Overview

Overview

Target audience

Target audience

Learning outcomes

Learning outcomes

Modular approach

Modular approach

Credentials

Credentials

Curriculum

Curriculum

FAQ

FAQ

Overview

The Information Security Manager Track is designed for professionals who are responsible for establishing and running an Information Security Management System (ISMS) in their organisation. Rather than focusing only on “implementation projects”, this programme covers the full lifecycle: from understanding context and risk through to day-to-day operation, performance evaluation and continual improvement.

Target audience

  • Practitioners, implementers, and consultants involved in the design, implementation, or improvement of information security management systems (ISMS) aligned with ISO/IEC 27001

  • Individuals with project or overall responsibility for establishing or evolving an information security management system

  • Current or aspiring information security managers, ISMS managers, or system owners responsible for operating and steering an existing ISMS

  • Members of information security, risk, or governance teams who play an active role in shaping, evolving, and continually improving information security management practices

Learning outcomes

In this track, you will acquire the following capabilities.

Design and build an ISMS that actually works

  • Translate ISO/IEC 27001 into practical, organisation-specific governance and processes

  • Integrate information security coherently into the organisation’s existing management systems

Take ownership of information security governance

  • Define roles, responsibilities and decision rights for information security

  • Position information security clearly within management and operational decision-making

Manage information security risks and performance

  • Identify and assess information security risks before they turn into incidents or audit findings

  • Define monitoring and controls that provide management with meaningful security information

Lead audits and improvement with confidence

  • Prepare and support internal and external ISMS audits professionally

  • Use audit results, incidents and performance data to drive targeted improvements

Professional positioning

  • Establish a recognised competence profile as Information Security Manager, with a foundation for senior security roles in ISO 27001-based organisations

  • Take responsibility for the implementation of a new ISMS or the coordination of an existing system

  • Act as a competent counterpart to senior management, clients, auditors and certification bodies

Track ID

HAT-IS-M

Duration

~22 days

Language

English

List price

CHF 10,000

Excl. VAT. VAT may apply depending on customer location and status.

Bespoke options

Bespoke options

Programmes tailored to your organizational needs

Programmes tailored to your organizational needs

Modular approach

Shared foundation

Halderstone tracks are designed as a modular system. Modules completed as part of one track do not need to be repeated when pursuing an additional track. This approach reduces redundancy, respects prior learning, and enables structured progression across multiple disciplines.

Core modules

Specialization modules

Manager capabilities across disciplines

Shared across manager tracks

AI Management

AIMS

ISO/IEC 42001

Business Continuity Management

BCMS

ISO 22301

Data Protection Management

PIMS

ISO/IEC 27701

Environmental Management

EMS

ISO 14001

Information Security Management

ISMS

ISO/IEC 27001

Quality Management

QMS

ISO 9001

If you later decide to extend your competence to additional domains and ISO standards, you can earn additional manager credentials without repeating the common core. This allows you to build an integrated competence profile step by step with limited additional effort.

Modular approach

Shared foundation

Halderstone tracks are designed as a modular system. Modules completed as part of one track do not need to be repeated when pursuing an additional track. This approach reduces redundancy, respects prior learning, and enables structured progression across multiple disciplines.

Core modules

Specialization modules

Manager capabilities across disciplines

Shared across manager tracks

AI Management

AIMS

|

ISO/IEC 42001

Business Continuity Management

BCMS

|

ISO 22301

Data Protection Management

PIMS

|

ISO/IEC 27701

Environmental Management

EMS

|

ISO 14001

Information Security Management

ISMS

|

ISO/IEC 27001

Quality Management

QMS

|

ISO 9001

If you later decide to extend your competence to additional domains and ISO standards, you can earn additional manager credentials without repeating the common core. This allows you to build an integrated competence profile step by step with limited additional effort.

Credentials

Scalable credential model

Two credentials with one track

Halderstone tracks follow a two-credential model that reflects their modular structure. Both credentials are awarded without expiry.

Core credential

Halderstone Diploma in Management System Management

  • Cross-domain management system foundation

  • Applicable across multiple ISO standards

  • Reusable for further specialisations

Specialisation credential

Halderstone Certified Information Security Manager

  • Professional capability in the selected management system discipline

  • Application of management system capabilities within the selected discipline

  • Aligned with the requirements of the relevant ISO standard

Registered credentials

Based on their specialization credential, track graduates can apply for a Registered credential. Registered credentials confirm verified professional experience and ensure knowledge stays up to date by periodic reassessment.

Learn more

Registered credentials: Halderstone Certified Information Security Manager

For employers

Understand how Halderstone credentials translate into capability signals in hiring and professional practice.

View credential framework

Credentials

Scalable credential model

Two credentials with one track

Halderstone tracks follow a two-credential model that reflects their modular structure. Both credentials are awarded without expiry.

Core credential

Halderstone Diploma in Management System Management

  • Cross-domain management system foundation

  • Applicable across multiple ISO standards

  • Reusable for further specialisations

Specialisation credential

Halderstone Certified Information Security Manager

  • Professional capability in the selected management system discipline

  • Application of management system capabilities within the selected discipline

  • Aligned with the requirements of the relevant ISO standard

Registered credentials

Based on their specialization credential, track graduates can apply for a Registered credential. Registered credentials confirm verified professional experience and ensure knowledge stays up to date by periodic reassessment.

Learn more

Registered credentials: Halderstone Certified Information Security Manager

For employers

Understand how Halderstone credentials translate into capability signals in hiring and professional practice.

View credential framework

Credentials

Scalable credential model

Two credentials with one track

Halderstone tracks follow a two-credential model that reflects their modular structure. Both credentials are awarded without expiry.

Core credential

Halderstone Diploma in Management System Management

  • Cross-domain management system foundation

  • Applicable across multiple ISO standards

  • Reusable for further specialisations

Specialisation credential

Halderstone Certified Information Security Manager

  • Professional capability in the selected management system discipline

  • Application of management system capabilities within the selected discipline

  • Aligned with the requirements of the relevant ISO standard

Registered credentials

Based on their specialization credential, track graduates can apply for a Registered credential. Registered credentials confirm verified professional experience and ensure knowledge stays up to date by periodic reassessment.

Learn more

Registered credentials: Halderstone Certified Information Security Manager

For employers

Understand how Halderstone credentials translate into capability signals in hiring and professional practice.

View credential framework

Overview

Full curriculum

The curriculum below shows all modules included in this learning path. Core modules are shared across tracks and are recognised if already completed.

Overview

Full curriculum

The curriculum below shows all modules included in this learning path. Core modules are shared across tracks and are recognised if already completed.

Core modules

Shared foundations common to all Manager tracks

Management System Core

Management System Core

Management Core

Management Core

Specialization modules

Role-specific modules that deepen your expertise in Information Security Management

Discipline competence in Information Security Management

Discipline competence in Information Security Management

Management system competence in ISO/IEC 27001

Management system competence in ISO/IEC 27001

Final assessment

Practical and theoretical demonstration of your acquired competence as Information Security Manager

Capstone project

Final exam

Good to know

Answers to common questions

Does this track prepare me for a CISO role?

How are other frameworks and standards handled in this track?

Why does the cross-disciplinary Diploma matter if we are hiring for a specific ISO standard?

What is included in a Halderstone professional track?

Are the tracks aligned with recognised standards such as ISO?

Do I need to complete all modules in the track?

Can I attend individual modules without enrolling in the full track?

Are modules recognised across different Halderstone tracks?

Is this track suitable if I am new to the topic?

How long does it take to complete the track?

What if I am unsure whether this track is right for me?

Office scene with people standing, walking and sitting

Ready to improve your management systems?

We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.

Contact us

Office scene with people standing, walking and sitting

Ready to improve your management systems?

We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.

Contact us

Office scene with people standing, walking and sitting

Ready to improve your management systems?

We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.

Contact us

Explore Halderstone

Explore Halderstone

Explore Halderstone