Learn best practice auditing techniques and lead audits with confidence. This intensive five-day course is suited to anyone who has a detailed understanding of ISO/IEC 27001 requirements and wants to build on our ISO/IEC 27001 internal auditor training course.

Led by expert tutors, you’ll gain the skills to lead, plan, manage and follow up an information security management system (ISMS) audit in line with ISO 19011. On the final day of the course, you’ll have the opportunity to test your knowledge in a written exam and receive an internationally recognized auditing certificate.

This is a great course for professional development. You’ll come away from this step in your learning journey with the skills to lead an ISMS audit team and be prepared for any successful third-party ISO/IEC 27001 assessment.

BSI's CQI and IRCA ISO/IEC 27001 ISMS Lead Auditor: Practitioner Package

This package is a structured learning pathway that combine carefully selected courses with rigorous assessments that guarantee their relevance. In this practitioner package, it includes:

4 hours on-demand eLearning ISO/IEC 27001 ISMS requirements training course (available 24/7, complete flexibility and time-efficient) and;
5-days CQI and IRCA ISO/IEC 27001 ISMS lead auditor training course (virtual instructor led training)

Assessment
Each course is followed by a mandatory online multiple-choice examination. Delegates must pass the examination to be awarded the qualification - BSI Mark of Trust.

Why practitioner package?

This qualification focuses on building a strong understanding of the fundamentals of the subject, enabling you to increase your performance and effectiveness within your role to the standard expected.
Unlimited access to ISO/IEC 27001 ISMS requirements on-demand eLearning training course prior the lead auditor training course for better understanding.
Opportunity to level up your achievements to professional level and the highest level of qualification, certified professional.
Showcasing your expertise with BSI’s Mark of Trust on business cards, social media and official documents.
Fully claimable under HRD Corp claimable course.

How will I benefit?

Develop the confidence to lead an audit team
Conduct an organizational audit of an ISMS in line with ISO/IEC 27001:2022
Protect private data to future-proof your organization and ensure compliance

Who should attend?

This course is suitable for those wishing to Lead audits of ISMS in accordance with ISO/IEC 27001:2013 (either as a 2^nd party, or 3^rd party auditor), those wishing to learn about effective audit practices. Security and quality professionals, existing information security auditors who wish to expand their auditing skills and consultants who wish to provide advice on ISO/IEC 27001:2022 ISMS Auditing.

Prerequisites
Delegates are expected to have the following prior knowledge:

a. Management systems
Understand the Plan-Do-Check-Act (PDCA) cycle.

b. Information security management
Knowledge of the following information security management principles and concepts:

Awareness of the need for information security
The assignment of responsibility for information security
Incorporating management commitment and the interests of stakeholders
Enhancing societal values
Using the results of risk assessments to determine appropriate controls to reach acceptable levels of risk
Incorporating security as an essential element of information networks and systems
The active prevention and detection of information security incidents
Ensuring a comprehensive approach to information security management
Continual reassessment of information security and making of modifications as appropriate

c. ISO/IEC 27001
Knowledge of the requirements of ISO/IEC 27001 (with ISO/IEC 27002) and the commonly used information security management terms and definitions, as given in ISO/IEC 27000.

What will I learn?

Explain the purpose and business benefits of:

Information Security Management Systems (ISMS), ISMS standards
Management system audit
Third-party certification

Explain the role of an auditor to plan, conduct, report and follow up an Information Security MS audit in accordance with ISO 19011 (and ISO 17021 where appropriate).

Have the skills to: Plan, conduct, report, and follow up an audit of an ISMS to establish conformity (or otherwise) with ISO/IEC 27001/2, ISO 19011 (and ISO 17021 where appropriate)

Benefits of completing ISO/IEC 27001 ISMS lead auditor course

Develop the confidence to lead an audit team
Conduct an organizational audit of an ISMS in line with ISO/IEC 27001:2022
Protect private data to future-proof your organization and ensure compliance

What's included

You will sit a 2 hour exam to test your knowledge and understanding. On completion, you’ll be awarded a CQI and IRCA certified training course certificate.