ISO27001 Lead Auditor: Mastering Information Security Auditing
Duration: 4 days + exam
The training ISO/IEC 27001 Lead Auditor training enables you to develop the expertise needed to carry out an information security management system (ISMS) audit by applying widely recognized auditing principles, procedures and techniques.
Who should attend?
- Auditors wishing to carry out and lead information security management system (ISMS) certification audits
- Managers or consultants wishing to master the information security management system audit process
- Persons responsible for maintaining compliance with information security management system requirements.
- Technical experts wishing to prepare for an information security management system audit.
- Expert consultants in information security management
Learning objectives
On completion of this course, participants will be able to :
- Explain the fundamental concepts and principles of an information security management system (ISMS) based on ISO 27001
- Interpret ISO 27001 requirements for an ISMS from an auditor’s point of view
- Assess ISMS compliance with ISO 27001 requirements, in line with fundamental audit concepts and principles
- Plan, conduct and close an ISO 27001 compliance audit, in accordance with ISO/IEC 17021-1 requirements, ISO 19011 guidelines and other good auditing practices.
- Managing an ISO/IEC 27001 audit program
Pedagogical approach
- This course is based on both theory and best practices used in ISMS auditing.
- Lectures are illustrated by examples based on a case study.
- Practical exercises are based on a case study that includes role-playing and discussion.
- The practical tests are similar to the certification exam.
Prerequisites
A basic understanding of ISO/IEC 27001 and a thorough knowledge of auditing principles.