ISO 27001 Lead Auditor

Description

ISO/IEC 27001 Lead Auditor training enables you to develop the necessary expertise to perform an Information Security Management System (ISMS) audit by applying widely recognized audit principles, procedures and techniques.

Why Should You Attend?

During this training course, you will acquire the knowledge and skills to plan and carry out internal and external audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.

Based on practical exercises, you will be able to master audit techniques and become competent to manage an audit program, audit team, communication with customers, and conflict resolution.

After acquiring the necessary expertise to perform this audit, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27001 Lead Auditor” credential. By holding a PECB Lead Auditor Certificate, you will demonstrate that you have the capabilities and competencies to audit organizations based on best practices.

Who Should Attend?

The ISO/IEC 27001 Lead Auditor course is intended for:

• Auditors seeking to perform and lead information security management system (ISMS) audits
• Managers or consultants seeking to master the information security management system audit process
• Individuals responsible to maintain conformity with the ISMS requirements in an organization
• Technical experts seeking to prepare for the information security management system audit
• Expert advisors in information security management

Learning Objectives

Upon successful completion of this training course, you will be able to:

• Explain the fundamental concepts and principles of an information security management system (ISMS) based on ISO/IEC 27001
• Interpret the ISO/IEC 27001 requirements for an ISMS from the perspective of an auditor
• Evaluate the ISMS conformity to ISO/IEC 27001 requirements, in accordance with the fundamental audit concepts and principles
• Plan, conduct, and close an ISO/IEC 27001 compliance audit, in accordance with ISO/IEC 17021-1 requirements, ISO 19011 guidelines, and other best practices of auditing
• Manage an ISO/IEC 27001 audit program

Educational Approach

The training course is e-Learning centered and:

• Is based on both theory and best practices used in ISMS audits
• Lecture sessions are illustrated with examples based on case studies
• Practical exercises are based on a case study which includes role playing and discussions
• Practice tests are similar to the Certification Exam

Prerequisites

A fundamental understanding of ISO/IEC 27001 and comprehensive knowledge of audit principles is needed for this course.

Attendees are encouraged to have a personal copy of the latest version of the ISO/IEC27001:2022 standard.  This standard can be purchased at the same time as the course is purchased.

Course Agenda

• Day 1: Introduction to the information security management system (ISMS) and ISO/IEC 27001
• Day 2: Audit principles, preparation, and initiation of an audit
• Day 3: On-site audit activities
• Day 4: Closing the audit
• Day 5: Certification Exam

Certification Examination

The exam fully meets the requirements of the PECB Examination and Certificate Programme. It covers the following competency domains:

• Domain 1: Fundamental principles and concepts of Information Security Management System (ISMS)
• Domain 2: Information Security Management System (ISMS)
• Domain 3: Fundamental audit concepts and principles
• Domain 4: Preparation of an ISO/IEC 27001 audit
• Domain 5: Conducting an ISO/IEC 27001 audit
• Domain 6: Closing an ISO/IEC 27001 audit
• Domain 7: Managing an ISO/IEC 27001 audit program

Additional Information

• Training Days: 5
• CPD Certification (Credits): 31
• Exam Duration: 3 hours (open book)

Free Retake Exam: Yes