Lead Auditor (ISO/IEC 27001)

Why should you take this ISO/IEC 27001 Lead Auditor training course?

ISO/IEC 27001:2022 Lead Auditor training enables you to develop the necessary expertise to perform an Information Security Management System (ISMS) audit by applying widely recognized audit principles, procedures and techniques.

During this training course, you will acquire the knowledge and skills to plan and carry out internal and external audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.

Based on practical exercises, you will be able to master audit techniques and become competent to manage an audit program, audit team, communication with customers, and conflict resolution.

After acquiring the necessary expertise to perform this audit, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27001 Lead Auditor” credential. By holding a PECB Lead Auditor Certificate, you will demonstrate that you have the capabilities and competencies to audit organizations based on best practices.

Who is this course & certification for?

• Auditors seeking to perform and lead information security management system (ISMS) audits

  
  

• Managers or consultants seeking to master the information security management system audit process

  
  

• Individuals responsible to maintain conformity with the ISMS requirements in an organization

  
  

• Technical experts seeking to prepare for the information security management system audit

  
  

• Expert advisors in information security management

Learning objectives

• Describe the main information security management concepts, principles, and definitions

  
  

• Explain the main ISO/IEC 27001:2022 requirements for an information security management system (ISMS)

  
  

• Identify approaches, methods, and techniques used for the implementation and management of an ISMS

Educational approach

• This training is based on both theory and best practices used in ISMS audits

  
  

• Lecture sessions are illustrated with examples based on case studies

  
  

• Practical exercises are based on a case study which includes role playing and discussions

  
  

• Practice tests are similar to the Certification Exam

Course Agenda

Day 1: Introduction to the information security management system (ISMS) and ISO/IEC 27001

Day 2: Audit principles, preparation, and initiation of an audit

Day 3: On-site audit activities

Day 4: Closing the audit

Day 5: Certification Exam 

Examination

The “PECB Certified ISO/IEC 27001 Lead Auditor” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:

Domain 1: Fundamental principles and concepts of Information Security Management System (ISMS)

Domain 2: Information Security Management System (ISMS)

Domain 3: Fundamental audit concepts and principles

Domain 4: Preparation of an ISO/IEC 27001 audit

Domain 5: Conducting an ISO/IEC 27001 audit

Domain 6: Closing an ISO/IEC 27001 audit

Domain 7: Managing an ISO/IEC 27001 audit program

Prerequisites

A fundamental understanding of ISO/IEC 27001 and comprehensive knowledge of audit principles.