ISO/IEC 27001 Lead Auditor Training

ISO 27001 lead auditor training from Sync Resource will help you to develop all the necessary skills and expertise to audit an ISO 27001 based Information Security Management System, by applying best and widely recognized audit principles, procedures and techniques, to ensure that the organization or staff is competent in managing and maintaining its Information Security Management System.

This lead auditor training will also help you gain the knowledge and develop the skills to professionally and proficiently plan and perform not only internal but also the external audits in compliance with ISO 19011 standard, and the certification process according to ISO 19011 and ISO/IEC 17021-1 standard.

In short, this training will help you master all tools and techniques necessary for the ISO 27001 internal and external audit to competently, manage an audit program or an auditing team, communicate with customers, and conflict resolution.

Learning Objectives

  • Learn to perform Information Security Management System internal/external audit
  • Learn to lead ISMS audit or audit team
  • Learn to perform ISO 27001 internal audit, following the ISO 19011 guidelines
  • Understand the operations of a Information Security Management System (ISMS) based on ISO 27001
  • Understand the correlation between ISO 27001 and other ISO standards and regulatory frameworks
  • Acquire all the necessary skills and knowledge to plan an audit, lead an audit, draft reports, and follow-up on an audit in compliance with ISO 19011 guidelines and the specification of ISO 17021 and ISO 27006
  • Learn how to interpret the requirements of ISO 27001 in the context of a ISMS audit
  • Learn how to lead an audit and audit team
  • Improve your skills to analyze the internal and external environment of an organization, and your audit decision-making in the context of a ISMS

Who Should Attend?

  • Internal Information Security Management System auditors
  • Anyone involved in performing and leading the ISO 27001 certification audit
  • Members of a ISMS audit team
  • Project managers or consultants wanting to master the ISO 27001 audit process
  • Any individual responsible for the Information Security conformity in an organization
  • ISMS Consultants or Expert advisers
  • Technical experts planning to prepare for a Information Security audit function

ISO/IEC 27001 Lead Auditor Training

Course Agenda

Duration: 5 Days

Day 1: Introduction to Information Security Management Systems (ISMS) and ISO 27001 Standard

  • Course objective and structure
  • Standard and regulatory framework
  • Fundamental principles of Information Security management
  • Certification process
  • Information Security Management System (ISMS)

Day 2: Audit principles, preparation and launching of an audit

  • Fundamental audit concepts and principles
  • Audit approach based on evidence and risk
  • Initiating the audit
  • Stage 1 audit
  • Preparing the stage 2 audit (on-site audit)
  • Stage 2 audit (Part 1)

Day 3: On-site audit activities

  • Stage 2 audit (Part 2)
  • Communication during the audit
  • Audit procedures
  • Creating audit test plans
  • Drafting audit findings and non-conformity reports

Day 4: Closing the audit

  • Audit documentation
  • Conducting a closing meeting and conclusion of an ISO 27001 audit
  • Evaluation of corrective action plans
  • ISO 27001 surveillance audit and audit management program

Day 5: Certification Exam

ISO/IEC 27001 Lead Auditor Training

Examination

The Sync Resource ISO 27001 lead auditor training fully meets the requirements of the PECB Examination and Certification Programme (ECP).

The “PECB Certified ISO 27001 Lead Auditor” exam is available in different languages (the complete list of languages can be found in the examination application form)
Duration: 3 hours

The exam covers the following competency domains:

Domain 1: Fundamental Principles and Concepts in Information Security Management

Main Objective: To ensure that the ISO 27001 Lead Auditor candidate can understand, interpret and illustrate the main Information Security Management concepts related to a Information Security Management System (ISMS)

Domain 2: Information Security Management Systems (ISMS)

Main Objective: To ensure that the ISO 27001 Lead Auditor candidate can understand, interpret and illustrate the main concepts and components of a ISO 27001 based Information Security Management System

Domain 3: Fundamental Audit Concepts and Principles

Main Objective: To ensure that the ISO 27001 Lead Auditor candidate can understand, interpret and apply the main concepts and principles related to a ISMS audit in the context of ISO 27001

Domain 4: Preparation of an ISO 27001 Audit

Main Objective: To ensure that the ISO 27001 Lead Auditor candidate can prepare appropriately a ISMS audit in the context of ISO 27001

Domain 5: Conduct of an ISO 27001 Audit

Main Objective: To ensure that the ISO 27001 Lead Auditor candidate can conduct efficiently a ISMS audit in the context of ISO 27001

Domain 6: Conclusion and follow-up of an ISO 27001 Audit

Main Objective: To ensure that the ISO 27001 Lead Auditor candidate can conclude a ISMS audit, and conduct the follow-up activities in the context of ISO 27001

Domain 7: Management of an ISO 27001 Audit Program

Main Objective: To ensure that the ISO 27001 Lead Auditor understands how to establish and manage a ISMS audit program

ISO/IEC 27001 Lead Auditor Training

Certification

After successfully passing the exam, you can apply for the credentials shown on the table below. Certification will be provided once you comply with all the requirements related to the selected credential.

The requirements for PECB Implementer Certifications are: 

Credential Exam Professional Experience ISMS Audit/Assessment Experience Other Requirements
PECB Certified ISO 27001 Provisional Auditor PECB Certified ISO 27001 Lead Auditor Exam None None Signing the PECB
code of ethics
PECB Certified ISO 27001 Auditor PECB Certified ISO 27001 Lead Auditor Exam Two years; One year of ISMS related work experience Information Security Management System activities totaling 200 hours Signing the PECB code of ethics
PECB Certified ISO 27001 Lead Auditor PECB Certified ISO 27001 Lead Auditor Exam Five years; Two years of ISMS related work experience Information Security Management System activities totaling 300 hours Signing the PECB code of ethics
PECB Certified ISO 27001 Senior Lead Auditor PECB Certified ISO 27001 Lead Auditor Exam Ten years; Seven years of ISMS related work experience Information Security Management System activities totaling 1000 hours Signing the PECB code of ethics

ISO/IEC 27001 Lead Auditor Training

General Information

  • Certification fees are included on the exam price
  • Training material containing over 450 pages of information and practical examples will be distributed
  • A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
  • In case of exam failure, you can retake the exam within 12 months for free