+49 (911) 80 10 30

Give us a call or have us call you back!

Simply leave a message with your callback appointment

Your Name *

Your phone number *

Callback date *

Callback time *

Your request *

In order to process your request, it is necessary to process the data you provide. This means that by submitting the contact form, you consent to your data being processed (see Privacy Policy). You can object to the processing of your data at any time.

* All fields marked with an asterisk are mandatory fields.
Send a message

Your Name *

Your email *

Your phone number

Your request *

In order to process your request, it is necessary to process the data you provide. This means that by submitting the contact form, you consent to your data being processed (see Privacy Policy). You can object to the processing of your data at any time.*

* All fields marked with an asterisk are mandatory fields.
Social Media

Share page

SC560: BSI™ IT-Grundschutz Consultant

Training: Security - Governance, Risk & Compliance - Certification

Participants receive a practical introduction to the BSI™ IT-Grundschutz. They learn how to develop security concepts for public authorities and companies, implement an ISMS, and apply measures in operations. The course also covers support in ISO 27001 audits. The training corresponds to the IT-Grundschutz advanced course and prepares participants for the official BSI™ exam to become an IT-Grundschutz Consultant.

Appointment selection

Appointments in German language (4)


Hybrid training	2025-12-08 \| 10:00 am	2025-12-09 \| 05:00 pm	Nürnberg
Hybrid training	2026-02-02 \| 10:00 am	2026-02-03 \| 05:00 pm	Nürnberg
Presence training	2026-05-11 \| 10:00 am	2026-05-12 \| 05:00 pm	Nürnberg
Hybrid training	2026-11-16 \| 10:00 am	2026-11-17 \| 05:00 pm	Nürnberg

Possible course languages: German

Request prefered appointment period:

Your Name *

Your email *

Your phone number

Preferred period from *

Preferred period to *

Number of participants *

Your message

* All fields marked with an asterisk are mandatory fields.

Hybrid training

Start: 2025-12-08 | 10:00 am

End: 2025-12-09 | 05:00 pm

Location: Nürnberg

Price: 1.400,00 € plus VAT.

Hybrid training

Start: 2026-02-02 | 10:00 am

End: 2026-02-03 | 05:00 pm

Location: Nürnberg

Price: 1.400,00 € plus VAT.

Presence training

Start: 2026-05-11 | 10:00 am

End: 2026-05-12 | 05:00 pm

Location: Nürnberg

Price: 1.400,00 € plus VAT.

Hybrid training

Start: 2026-11-16 | 10:00 am

End: 2026-11-17 | 05:00 pm

Location: Nürnberg

Price: 1.400,00 € plus VAT.

Request prefered appointment period:

Your Name *

Your email *

Your phone number

Preferred period from *

Preferred period to *

Number of participants *

Your message

* All fields marked with an asterisk are mandatory fields.

Agenda:

Information security standards and norms
- Overview, purpose and structure of relevant standards and guidelines (e.g. ISO 2700x etc.) Cobit, ITIL etc.
- IT-Grundschutz Compendium
  - Industry-specific security standards and IT-Grundschutz profiles
BSI™ IT-Grundschutz methodology
- Key questions for IT-Grundschutz protection
- Basic requirements
- Standard requirements
- Requirements for elevated protection needs
- Selection of methodology using practical example
BSI™ Compendium
- Structure and application of the compendium
- ISMS (information security management system)
- Process modules
- System modules
- Implementation guidelines
- Creation of a module
Execution of an IT-Grundschutz Check
Risk Analysis according to 200-3
- Example for risk assessment
Maintenance and continuous improvement
- Example for application of CIP
IT-Grundschutz profiles
- Structure and creation of a profile
- Application and usage possibilities of published profiles
Audit preparation
- Planning and preparation (roles, responsibilities, independence, audit plan, checklists, combination of audits, synergy effects)
- Audit process activities
- Reporting (content and structure, approval and distribution, retention and confidentiality)
- Follow-up measures (pre-audit, re-audit, monitoring, corrective actions)
Emergency management
- Overview of BSI™ standard 100-4
- Emergency management process (initiate, analyze, implement, practice, improve)
- Business impact analysis (BIA)
- Managing emergencies (handling security incidents)
- Develop procedure for security incidents and reporting path
Summary and exam preparation

Objectives:

IT-Grundschutz Practitioners can obtain a personal certification as a BSI™ IT-Grundschutz Consultant through the advanced training to become an IT-Grundschutz Consultant.

You will acquire in-depth knowledge on the development and implementation of an appropriate information security strategy for your organization, the preparation and execution of audits, as well as the implementation of Business Continuity Management measures.
IT-Grundschutz Consultants can assist and support authorities and companies in the following initiatives, among others:

Implementation of an Information Security Management System (ISMS)
Development of security concepts
Definition and implementation of appropriate measures
Expert support in the introduction of processes

An IT Baseline Protection Consultant can also assist in preparing for an ISO 27001 audit based on IT Baseline Protection.

Target audience:

The course SC560 BSI™ IT-Grundschutz Consultant is specifically designed for participants who already possess knowledge and practice in the field of Cyber Security. Job titles include:

Prospective Information Security Officers
Data Security Officers
Data Protection Officers
IT Managers / IT Administrators
Individuals responsible for information security
Individuals responsible for risk management
Individuals responsible for business continuity management
Individuals responsible for audit and IT audit
Security Managers
Executives / Project Managers

Prerequisites:

Proof of successful completion of a personal certification as a BSI™ IT-Grundschutz Practitioner is required. You can obtain this proof in our basic training SC550 BSI™ IT-Grundschutz Practitioner.

Description:

The Federal Office for Information Security (BSI™) is responsible for IT security matters. To strengthen the reactive offering in the field of Cyber Security or IT security, the Cyber Security Network (CSN) was established as a contact point for incident handling. This voluntary association of qualified IT security experts aims to detect and analyze IT security incidents more quickly, limit the extent of damage, and prevent further harm.

The workshop SC560 BSI™ IT-Grundschutz Consultant enables you to support authorities and companies in developing security concepts or in implementing an Information Security Management System (ISMS). In daily operations, you can work with the responsible employees to define and implement measures based on IT Baseline Protection. Certified IT Baseline Protection Consultants can also assist in preparing an ISO 27001 audit based on IT Baseline Protection.

The seminar constitutes the second level of the official BSI™ certification program and corresponds to the IT-Grundschutz advanced training. Participants who have successfully passed the IT-Grundschutz Protection Practitioner exam and subsequently provide proof of participation in the IT Baseline Protection Consultant seminar are eligible to take the official IT-Grundschutz Consultant exam. This exam can only be taken at the BSI™ in Bonn. General information from the BSI™ on personal certification for IT-Grundschutz Consultants can be found on the BSI™ website.