Lead Auditor Training Course - ISO/IEC 27001:2022
ISO 27001 Lead Auditor Course (5 Days)
Learn best practice auditing techniques and lead audits with confidence. This intensive course is suited to anyone who has a detailed understanding of ISO/IEC 27001 requirements and wants to build on our ISO/IEC 27001 internal auditor training course.
Led by expert tutors, you’ll gain the skills to lead, plan, manage and follow up an information security management system (ISMS) audit in line with ISO 19011. On the final day of the course, you’ll have the opportunity to test your knowledge in a written exam and receive an internationally recognized auditing certificate.
This is a great course for professional development. You’ll come away from this step in your learning journey with the skills to lead an ISMS audit team and be prepared for any successful third-party ISO/IEC 27001 assessment.
Course Duration: 5 Days
Delivery Method: Online
FAQs
-
This course is suitable for those wishing to Lead audits of ISMS in accordance with ISO/IEC 27001 (either as a 2nd party, or 3rd party auditor), those wishing to learn about effective audit practices. Security and quality professionals, existing information security auditors who wish to expand their auditing skills and consultants who wish to provide advice on ISO/IEC 27001:2022 ISMS Auditing
Prerequisites:
You should have a good knowledge of ISO/IEC 27001 and the key principles of an ISMS. If not, we strongly recommend you attend our one day requirements course. It will also help if you have attended an internal or lead auditor course or have experience with conducting internal or supplier audits.
-
By the end of this training course, the participants will be able to:
Explain the fundamental concepts and principles of an information security management system (ISMS) based on ISO/IEC 27001
Interpret the ISO/IEC 27001 requirements for an ISMS from the perspective of an auditor
Evaluate the ISMS conformity to ISO/IEC 27001 requirements, in accordance with the fundamental audit concepts and principles
Plan, conduct, and close an ISO/IEC 27001 compliance audit, in accordance with ISO/IEC 17021-1 requirements, ISO 19011 guidelines, and other best practices of auditing
Manage an ISO/IEC 27001 audit program
-
Explain the purpose and business benefits of:
Information Security Management Systems (ISMS), ISMS standards
Management system audit
Third-party certification
Explain the role of an auditor to plan, conduct, report and follow up an Information Security MS audit in accordance with ISO 19011 (and ISO 17021 where appropriate).
Have the skills to: Plan, conduct, report, and follow up an audit of an ISMS to establish conformity (or otherwise) with ISO/IEC 27001/2, ISO 19011 (and ISO 17021 where appropriate).
ISO/IEC 27001 is the world's best-known standard for information security management systems (ISMS). It defines requirements an ISMS must meet.
The ISO/IEC 27001 standard provides companies of any size and from all sectors of activity with guidance for establishing, implementing, maintaining and continually improving an information security management system.
Conformity with ISO/IEC 27001 means that an organization or business has put in place a system to manage risks related to the security of data owned or handled by the company, and that this system respects all the best practices and principles enshrined in this International Standard.
With cyber-crime on the rise and new threats constantly emerging, it can seem difficult or even impossible to manage cyber-risks. ISO/IEC 27001 helps organizations become risk-aware and proactively identify and address weaknesses.
An information security management system implemented according to this standard is a tool for risk management, cyber-resilience and operational excellence.