I. Overview:

ISO/IEC 27001 Lead Auditor training enables you to develop the necessary expertise to perform an Information Security Management System (ISMS) audit by applying widely recognized audit principles, procedures and techniques.

II. Duration: 05 days (40 hours)

III. Objectives:

By the end of this training course, the participants will be able to:

• Explain the fundamental concepts and principles of an information security management system (ISMS) based on ISO/IEC 27001
• Interpret the ISO/IEC 27001 requirements for an ISMS from the perspective of an auditor
• Evaluate the ISMS conformity to ISO/IEC 27001 requirements, in accordance with the fundamental audit concepts and principles
• Plan, conduct, and close an ISO/IEC 27001 compliance audit, in accordance with ISO/IEC 17021-1 requirements, ISO 19011 guidelines, and other best practices of auditing
• Manage an ISO/IEC 27001 audit program

IV. Intended Audience:

• Auditors seeking to perform and lead information security management system (ISMS) audits
• Managers or consultants seeking to master the information security management system audit process
• Individuals responsible to maintain conformity with the ISMS requirements in an organization
• Technical experts seeking to prepare for the information security management system audit
• Expert advisors in information security management

V. Prerequisites:

• A fundamental understanding of ISO/IEC 27001 and comprehensive knowledge of audit principles.

VI. Course outlines:

• Day 1: Introduction to the information security management system (ISMS) and ISO/IEC 27001
• Day 2: Audit principles, preparation, and initiation of an audit
• Day 3: On-site audit activities
• Day 4: Closing the audit
• Day 5: Certification Exam