Login / Register
Login / Register

ISO/IEC 27001 Lead Auditor

,
  • This course is for : Expert Level

The ISO/IEC 27001 Lead Auditor training equips participants with the advanced expertise required to conduct comprehensive audits of an Information Security Management System (ISMS). This is achieved through the application of globally recognized audit principles, established procedures, and professional auditing techniques.

Why should you attend?

This training course provides the knowledge and skills necessary to plan and conduct internal and external audits in accordance with ISO 19011 guidelines and the ISO/IEC 17021-1 certification process.

Through practical exercises, participants will master audit techniques and develop the competence to manage an audit program and audit team, including handling client communication and conflict resolution.

Upon acquiring the requisite expertise, participants are eligible to take the certification examination. Successful candidates may apply for the “PECB Certified ISO/IEC 27001 Lead Auditor” credential. Holding this PECB Lead Auditor Certificate demonstrates the holder’s capabilities and competencies in auditing organizations against best practices.

Who can attend?

  • Auditors aiming to conduct and lead Information Security Management System (ISMS) audits.
  • Managers or consultants seeking to master the ISMS audit process.
  • Individuals responsible for ensuring organizational conformity with ISMS requirements.
  • Technical experts preparing to participate in ISMS audits.
  • Expert advisors specializing in information security management.

Learning objectives

Upon completing this training course, participants will be able to:

  • Explain the core concepts and principles of an Information Security Management System (ISMS) as defined by ISO/IEC 27001.
  • Interpret the requirements of the ISO/IEC 27001 standard from an auditor’s perspective.
  • Evaluate an ISMS for conformity with ISO/IEC 27001, applying fundamental audit concepts and principles.
  • Plan, conduct, and conclude an ISO/IEC 27001 compliance audit in accordance with ISO/IEC 17021-1 requirements, ISO 19011 guidelines, and established auditing best practices.
  • Manage a comprehensive ISO/IEC 27001 audit program.

Educational approach

  • This training program integrates theoretical instruction with established best practices for ISMS auditing.
  • Lecture content is supported by illustrative examples drawn from practical case studies.
  • Hands-on exercises utilize a comprehensive case study involving role-playing scenarios and guided discussions.
  • Practice examinations are designed to reflect the structure and content of the official certification exam.

Prerequisites

A fundamental understanding of ISO/IEC 27001 and comprehensive knowledge of audit principles.

Building Digital Trust through Effective ISMS Auditing

The ISO/IEC 27001 Lead Auditor training course is pivotal for those seeking to establish and maintain digital trust by ensuring the effectiveness of ISMS. By mastering the principles and techniques of ISMS auditing, attendees will play a crucial role in identifying vulnerabilities, enhancing security measures, and fostering a culture of accountability. Participants who complete the training course will be equipped to lead audits that not only ensure regulatory compliance but also foster confidence in the organization’s ability to secure its digital assets.

The “PECB Certified ISO/IEC 27001 Lead Auditor” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:

Domain 1: Fundamental principles and concepts of Information Security Management System (ISMS)

Domain 2: Information Security Management System (ISMS)

Domain 3: Fundamental audit concepts and principles

Domain 4: Preparation of an ISO/IEC 27001 audit

Domain 5: Conducting an ISO/IEC 27001 audit

Domain 6: Closing an ISO/IEC 27001 audit

Domain 7: Managing an ISO/IEC 27001 audit program

Upon successfully passing the examination, you may apply for the relevant credential as detailed in the program overview. The official certificate will be issued after you have fulfilled all requirements associated with your selected credential.

For comprehensive information regarding the ISO/IEC 27001 certification scheme and the PECB certification process, please consult the official program documentation.

The requirements for PECB Auditor Certifications are:

Credential Exam Professional experience MS audit/assessment experience Other requirements
PECB Certified ISO/IEC 27001 Provisional Auditor PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent None None Signing the PECB Code of Ethics
PECB Certified ISO/IEC 27001 Auditor PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent Two years: One year of work experience in Information Security Management Audit activities: a total of 200 hours Signing the PECB Code of Ethics
PECB Certified ISO/IEC 27001 Lead Auditor PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent Five years: Two years of work experience in Information Security Management Audit activities: a total of 300 hours Signing the PECB Code of Ethics
PECB Certified ISO/IEC 27001 Senior Lead Auditor PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent Ten years: Seven years of work experience in Information Security Management Audit activities: a total of 1,000 hours Signing the PECB Code of Ethics

Note: PECB Certified Individuals who do possess the Lead Implementer and Lead Auditor Credentials are qualified for the respective PECB Master Credential, given they have taken 4 additional Foundation Exams which are related to this scheme. For more detailed information about the Foundation Exams and the overall Master Requirements, please go to the following link: https://pecb.com/master-credentials.

To be considered valid, these audits should follow best audit practices and include the following activities:

  • Audit planning
  •  Audit interview
  • Managing an audit program
  • Drafting audit reports
  • Drafting non-conformity reports
  • Drafting audit working documents
  •  Documentation review
  • On-site Audit
  • Follow-up on non-conformities
  • Leading an audit team
  • The full cost of certification and examination is included within the training course fee.
  • Participants will be provided with comprehensive training materials, consisting of over 450 pages of detailed information and practical examples.
  • A certificate of course completion, valued at 31 Continuing Professional Development (CPD) credits, will be issued to all participants who attend the training.
  • Should a participant not pass the examination, one complimentary retake is available within 12 months of the initial attempt.
Original price was: $1,499.00.Current price is: $750.00.
Clear
-
+

Course agenda

Day 1: Introduction to the information security management system (ISMS) and ISO/IEC 27001

Day 2: Audit principles, preparation, and initiation of an audit

Day 3: On-site audit activities

Day 4: Closing the audit

Day 5: Certification Exam