Skip to main content
Image coming soon

SEC9199 Mastering ISO 27001 for CGI Partner Delivery Managers

$199.00
Adding to cart… The item has been added

A tailored course, built for your situation

Mastering ISO 27001 for CGI Partner Delivery Managers

Build an enduring security delivery capability that compounds across programs and clients

$199 one-time
24-hour access provisioning 30-day money-back guarantee Hand-built implementation playbook
12 modules. 12 chapters per module. 144 chapters total.
12 modules, each with 12 chapters (144 chapters total), text-based, plus downloadable templates and a hand-built implementation playbook delivered alongside course access.
Most security compliance efforts are project-bound and deplete with team turnover

The situation this course is for

Teams invest heavily in audit readiness, but when one program ends, the next starts from scratch. Knowledge doesn’t carry forward. Stakeholders re-litigate controls. Momentum stalls. Practitioners burn out rebuilding what should be institutional.

Who this is for

Senior delivery leaders in global systems integrators managing multi-client portfolios under regulatory scrutiny

Who this is not for

Individual contributors focused on single-system implementations or auditors preparing for certification exams

What you walk away with

  • Produce client-ready Statements of Applicability in under 48 hours
  • Re-use 80%+ of control documentation across engagements
  • Turn compliance evidence flows into repeatable delivery accelerators
  • Build internal reputation as the practitioner who makes ISO 27001 feel lightweight
  • Enable new teams to stand up compliant delivery lanes using your templates

The 12 modules (with all 144 chapters)

Module 1. The Evolving Role of Delivery Managers in Security Governance
Understand how senior delivery roles are becoming central to security assurance across client portfolios. This module frames ISO 27001 not as a checklist but as a strategic lever for consistent, trusted delivery.
12 chapters in this module
  1. How delivery leaders now own early-stage compliance decisions
  2. Why client trust hinges on consistent control application
  3. The shift from auditor-led to delivery-led compliance
  4. Mapping stakeholder expectations across geographies
  5. When security governance becomes a differentiator in deal pursuit
  6. Balancing speed and rigor in multi-client environments
  7. The cost of rework when compliance isn't institutionalized
  8. How top performers embed controls into kickoff workflows
  9. Linking delivery milestones to audit readiness gates
  10. Recognizing early signs of control drift in programs
  11. Building credibility with internal risk committees
  12. Setting expectations with clients on shared responsibilities
Module 2. ISO 27001 Foundations for Delivery Practitioners
Learn the core structure of ISO 27001 without getting lost in technical jargon. Focus on clauses and controls that matter most to delivery timelines and client assurance.
12 chapters in this module
  1. Why ISO 27001 applies beyond dedicated security teams
  2. Understanding Clause 4: Context of the Organization
  3. Clause 5 leadership commitments in delivery settings
  4. Clause 6 planning for compliance across programs
  5. Risk assessment approaches that don’t slow delivery
  6. Clause 7 support functions and resource alignment
  7. Operational planning under Clause 8
  8. Clause 9 performance evaluation for delivery leads
  9. Clause 10 continual improvement in client work
  10. Mapping ISO 27001 to common delivery lifecycles
  11. Integrating controls into sprint planning
  12. Avoiding over-documentation while staying compliant
Module 3. Building a Reusable Information Security Policy Framework
Create an organizational baseline of policies that travel across engagements, reducing setup time and increasing consistency.
12 chapters in this module
  1. Why one-off policies create delivery drag
  2. Identifying controls that apply across clients
  3. Drafting policy templates with modular clauses
  4. Gaining sign-off without slowing down
  5. Version control for policy updates
  6. Linking policy to role-based training requirements
  7. How to handle client-specific exceptions
  8. Documenting policy applicability decisions
  9. Using policy as a pre-sales credibility asset
  10. Integrating policy with supplier agreements
  11. Updating policy in response to audit findings
  12. Measuring policy adoption across delivery teams
Module 4. Designing Scalable Risk Assessments
Develop repeatable risk assessment workflows that maintain rigor without requiring specialist input for every project.
12 chapters in this module
  1. Scoping risk assessments across delivery contexts
  2. Standardizing asset identification processes
  3. Threat modeling at delivery speed
  4. Vulnerability classification frameworks
  5. Risk treatment options that align with client SLAs
  6. Documenting risk acceptance decisions securely
  7. Automating risk register updates
  8. Integrating risk findings into backlog planning
  9. Validating controls post-remediation
  10. Aligning risk posture with client risk appetite
  11. Reporting risk status to non-technical stakeholders
  12. Avoiding reassessment fatigue in long-term programs
Module 5. Creating Repeatable Statements of Applicability
Develop a living SoA template that evolves with each engagement, reducing audit prep from weeks to days.
12 chapters in this module
  1. Structure of a client-ready Statement of Applicability
  2. Automating control selection based on scope
  3. Justifying inclusion or exclusion of controls
  4. Maintaining audit trails for control decisions
  5. Using SoA as a negotiation tool with clients
  6. Versioning SoA across delivery variants
  7. Linking SoA to implementation evidence
  8. Generating SoA outputs in under two days
  9. Customizing SoA without losing reusability
  10. Training teams to maintain SoA integrity
  11. Integrating SoA with proposal responses
  12. Updating SoA in response to client feedback
Module 6. Embedding Controls into Delivery Workflows
Operationalize ISO 27001 controls into everyday delivery activities so compliance becomes invisible.
12 chapters in this module
  1. Integrating access reviews into sprint retrospectives
  2. Automating evidence collection for audit trails
  3. Scheduling control activities without disrupting flow
  4. Role-based access control in multi-client teams
  5. Secure onboarding and offboarding checklists
  6. Logging and monitoring for delivery environments
  7. Incident response readiness in agile settings
  8. Change management for compliant deployments
  9. Physical security considerations in distributed teams
  10. Vendor management controls that scale
  11. Encryption policies for data in transit and at rest
  12. Ensuring continuity of control during team transitions
Module 7. Developing Audit-Ready Documentation
Produce clean, consistent, and client-trust-building documentation that passes scrutiny the first time.
12 chapters in this module
  1. Designing documentation for reviewer clarity
  2. Minimizing documentation without introducing risk
  3. Standardizing evidence naming and storage
  4. Creating self-explanatory control descriptions
  5. Organizing folders for easy audit navigation
  6. Linking documentation to control objectives
  7. Using screenshots and diagrams effectively
  8. Version control for compliance assets
  9. Documenting exceptions with justification
  10. Preparing for unannounced audits
  11. Training others to maintain documentation quality
  12. Auditing your own team's documentation rigor
Module 8. Leading Internal Audits and Readiness Reviews
Run proactive internal assessments that strengthen readiness and reduce last-minute scrambling.
12 chapters in this module
  1. Scheduling audits without disrupting delivery
  2. Designing checklists tailored to delivery models
  3. Conducting remote audit sessions efficiently
  4. Reporting findings with actionable clarity
  5. Prioritizing remediation based on client impact
  6. Building trust with audit teams
  7. Running gap analysis workshops
  8. Simulating auditor interviews
  9. Generating improvement plans that stick
  10. Tracking closure of audit observations
  11. Using audit data to refine delivery playbooks
  12. Celebrating audit success across teams
Module 9. Managing Third-Party and Vendor Risk
Streamline vendor assurance processes to accelerate onboarding and ensure downstream compliance.
12 chapters in this module
  1. Assessing vendor risk at procurement stage
  2. Using SIG templates effectively
  3. Conducting remote vendor assessments
  4. Validating SOC 2 and ISO 27001 reports
  5. Managing exceptions with legal and procurement
  6. Tracking vendor compliance over time
  7. Handling multi-tiered subcontractor risk
  8. Building vendor questionnaires that get results
  9. Integrating vendor risk into project timelines
  10. Documenting due diligence for auditors
  11. Enforcing security clauses in SLAs
  12. Scaling vendor oversight across client portfolios
Module 10. Training and Awareness for Delivery Teams
Foster a culture of security ownership across technical and non-technical roles.
12 chapters in this module
  1. Designing role-specific security training
  2. Onboarding new team members securely
  3. Delivering engaging compliance content
  4. Measuring training effectiveness
  5. Creating phishing simulation programs
  6. Handling policy acknowledgment at scale
  7. Integrating awareness into team rituals
  8. Tailoring content for global teams
  9. Using real incidents as teaching moments
  10. Empowering team leads to reinforce norms
  11. Reducing human error through design
  12. Celebrating security champions publicly
Module 11. Continuous Improvement and Performance Metrics
Track compliance health over time and demonstrate improvement to leadership and clients.
12 chapters in this module
  1. Identifying leading indicators of compliance health
  2. Tracking control effectiveness over time
  3. Setting benchmarks for improvement
  4. Using dashboards to show progress
  5. Reporting metrics to executive stakeholders
  6. Aligning improvement goals with delivery KPIs
  7. Conducting post-mortems that drive change
  8. Sharing lessons across delivery units
  9. Benchmarking against industry standards
  10. Using metrics in client assurance discussions
  11. Celebrating milestones in maturity
  12. Iterating on the entire compliance lifecycle
Module 12. Scaling Compliance Across Client Portfolios
Turn individual project success into an organization-wide advantage.
12 chapters in this module
  1. Identifying patterns across client engagements
  2. Standardizing templates without losing flexibility
  3. Creating centers of excellence for delivery teams
  4. Mentoring new delivery leads on compliance
  5. Sharing playbooks across regions
  6. Building internal reputation as a go-to resource
  7. Contributing to firm-wide compliance strategy
  8. Reducing onboarding time for new clients
  9. Using compliance as a sales enabler
  10. Driving consistency in global delivery
  11. Measuring ROI of compliance investments
  12. Leaving behind a lasting institutional asset

How this maps to your situation

  • Initial client onboarding and scoping
  • Mid-cycle delivery assurance
  • Pre-audit readiness and review
  • Post-engagement knowledge retention

Before vs. after

Before
Compliance is reactive, project-bound, and depletes with each delivery end.
After
Compliance is proactive, reusable, and compounds in value across every new engagement.

What's included with your purchase

  • 12 modules with 12 chapters each (144 chapters)
  • Downloadable templates and worked examples for every module
  • Hand-built implementation playbook delivered alongside course access
  • 30-day money-back guarantee

Delivery and format

  • Course and learning environment access provisioned within 24 hours of purchase
  • Hand-built implementation playbook delivered alongside course access

Format: Text-based modules and chapters in the Art of Service learning environment, plus downloadable templates and worked examples for every chapter, plus the hand-built implementation playbook delivered alongside course access.

Time investment: Approximately 90 minutes of focused learning per week over six weeks, designed for senior practitioners balancing delivery responsibilities.

If nothing changes
Without a structured approach, each new delivery starts from zero on compliance, wasting time, increasing risk exposure, and missing opportunities to build lasting institutional strength.

How this compares to the alternatives

Unlike generic ISO 27001 courses, this program is tailored to delivery leaders in global integrators, focusing on reuse, scalability, and compounding value, not just certification.

Frequently asked

Is this course focused on passing audits?
Passing audits is a side effect. This course is designed to build reusable compliance assets that save time and strengthen delivery across clients.
How is the course structured?
12 modules, each containing 12 chapters (144 chapters total).
Will I receive templates I can use immediately?
Yes, every module includes downloadable, customizable templates and real-world examples ready for adaptation.
$199 one-time. Approximately 90 minutes of focused learning per week over six weeks, designed for senior practitioners balancing delivery responsibilities..

Within 24 hours your account in the learning environment is provisioned and the tailored implementation playbook is delivered alongside it.

30-day money-back guarantee· 144 chapters· Hand-built playbook included· Account access within 24 hours