The PECB ISO/IEC 27034 Foundation training course provides participants with an understanding of the fundamental principles of application security and the requirements of ISO/IEC 27034. The course covers key domains, including the concepts and scope of application security, as well as organizational and application-level planning, application security controls, and monitoring of security controls.
Participants will also learn how to verify and align application security practices with organizational objectives and regulatory requirements , including how to tailor an Application Normative Framework (ANF) to define the necessary security controls and processes that help each application meet its Targeted Level of Trust (TLT).
Why Should You Attend?
The PECB ISO/IEC 27034 Foundation training course enables participants to understand the fundamental concepts and principles of application security, as well as the structure, components, and requirements of ISO/IEC 27034. This course is designed to prepare professionals to support the implementation and maintenance of application security throughout the software life cycle.
By attending this course, participants will learn how ISO/IEC 27034 aligns with other standards, understand key security principles such as confidentiality, integrity, and availability, and gain insight into the roles involved in managing the Organization Normative Framework (ONF) and Application Normative Framework (ANF).
Who Should Attend?
- Individuals involved in application security or IT governance
- Professionals seeking to gain knowledge about ISO/IEC 27034 and its application
- Individuals involved in the implementation, management, or improvement of application security
- IT professionals, developers, or managers responsible for safeguarding applications
Course agenda
DAY 1 | Introduction to application security and ISO/IEC 27034
DAY 2 | Implementation and verification of application security controls
Training materials
The participant will receive a training material containing more than 200 pages of information and practical examples in electronic form via the PECB account. As part of the full-time course, the participant will also receive printed training materials.
Examination
The “PECB ISO/IEC 27034 Foundation” exam fully meets all the PECB Examination and Certification Program (ECP) requirements. It covers the following competency domains:
- DOMAIN 1 | Fundamental principles and concepts of application security
- DOMAIN 2 | Organizational and application security planning, implementation, and monitoring
The exam consists of 40 multiple-choice questions (a, b, c) and is closed book, i.e. no materials can be used. The exam takes 1 hour and can be taken online or in person. If you do not pass the exam, you can retake it free of charge within 12 months.
For specific information about exam type, languages available, and other details, please visit the List of PECB Exams and the Examination Rules and Policies.
Price information
Price includes course participation, electronic training materials, exam and PECB certification fees. In addition, the price of the full-time course includes a printed copy of the training material, lunch on the training days and refreshments.
Certificate requirements
After passing the exam, you can apply for the credential shown in the table below. The certificate requirements for PECB ISO/IEC 27034 Foundation are:
