ISO/IEC 27001 Lead Auditor training enables you to develop the necessary expertise to perform an Information Security Management System (ISMS) audit by applying widely recognized audit principles, procedures and techniques.
Duration of course
- 5 days of virtual live training (via Zoom).
- This includes 40 hours of instructors led training.
Requirements
- No prerequisite knowledge required.
Objectives
- Acquire the knowledge and skills to plan and carry out internal and external audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.
- Master audit techniques and become competent to manage an audit program, audit team, communication with customers, and conflict resolution.
Who should attend
- Auditors seeking to perform and lead Information Security Management System (ISMS) certification audits.
- Managers or consultants seeking to master an Information Security Management System audit process.
- Evaluate the ISMS conformity to ISO/IEC 27001 requirements, in accordance with the fundamental audit concepts and principles.
- Individuals responsible for maintaining conformance with Information Security Management System requirements.
- Technical experts seeking to prepare for an Information Security Management System audit.
1 Introduction to the information security management system (ISMS) and ISO/IEC 27001
- Course objectives and structure.
- Standards and regulatory frameworks.
- Certification process.
- Fundamental principles of Information Security Management Systems.
- Information Security Management Systems (ISMS).
2 Planning and initiating ISO 27001:2013 Audit
- Fundamentals of audit principles and concepts.
- Approach based audit on evidence and on risk.
- Preparation of audit.
- Documentation.
- Planning and initiating ISO 27001:2013 Audit
3 Conducting an ISO 27001:2013 Audit
- Communication during Audit.
- Audit procedures including observation, document review, interview, sampling techniques, technical verification, corroboration and evaluation.
- How to draft Audit plans.
- Evaluating of audit findings, drafting of nonconformity reports.
4 Closing and the follow-up of an ISO 27001:2013 Audit
- Audit closing documentation.
- Organizing a closing meeting and stating the conclusion of an ISO 27001:2013 audit.
- Evaluation of corrective action plans.
- ISO 27001:2013 supervision audit and audit management program.
5 Examination
- Examination (50% passing criteria)
Delivery Format
- Lecture style
- Teacher led classroom training
- Discussions with consultants
- Roleplay / Presentations
Trainers & Consultants
Tsaaro Academy is an Official Training Partner of the International Association of Privacy Professionals (IAPP). Our trainers have been actively engaged in doing actual PDPA audits of Singaporean companies for Tsaaro Academy, and are certified by IAPP to conduct the CIPP/E course. Together, the team has also trained thousands of participants in the Personal Data Protection Act.
Our trainers have been actively engaged in doing actual GDPR audits of Indian companies for Tsaaro Academy. Together, the team has also trained more than 100 participants in the GDPR, PDPB, CCPA and similar laws.
Cancellation Policy
- Request for withdrawal or postponement must be made in writing to Tsaaro Academy.
- Refunds arising from course withdrawal/deferment will be subjected to the following terms:
- More than 2 weeks before course commencement: Full refund.
- Less than 2 weeks before course commencement: 50% refund.
- On or after course commencement: No refund.
Confirmation & Reservation
When registration is confirmed, participants will receive our email confirmation along with information of the course programme.If no seats are available for the applied date, you will be notified immediately and given an alternative date.
Tsaaro Academy reserves the right to change the course schedules, programmes and content without prior notice. We also reserve the right to cancel course due to unforeseen circumstances.