Overview
The 5-day Lead Auditor training course aims to provide participants with the knowledge, and develop the skills and expertise necessary to:
-
Audit a Quality Management System (QMS) based on ISO 9001:2015
-
Ensure that the organization is competent in maintaining and continually improving its QMS
-
Perform third party audits by applying widely recognized audit principles, procedures and techniques
-
Proficiently plan and perform internal and external audits in compliance with ISO 19011 and the certification process according to ISO 17021.
-
Manage audit teams and audit programmes, communicate with customers, resolve conflicts, etc.
Based on practical exercises, the participants will master the audit tools and techniques.
ISO 13485: 2016
Lead Auditor
First time you visit our website?
Empower Your Team with Industry-Leading Training Programs
Tailored corporate training for leadership, technical skills and professional development
-
We serve corporate clients investing in peoples' knowledge, skills, and competencies, to improve business performance, enhance process, product and service quality, and achieve sustained growth and profitability.
-
We understand the meaning of the business terms "Voice of the Customer" and what constitutes "value" from the customer's point of view.
-
We also understand the difference between "value" and "waste" from the business and individual learner point of view.
-
-
We care about the people, the knowledge enhancement of which is entrusted to us by their organisation or themselves.
-
We focus on learning (not just on training, and issuing certificates) and providing post-training advice and support through workshops and consulting services.
Stratos Lazaridis
CEO The Marvel Academy
Corporate Training Solutions
Mob: +44 (0)749 114 7156
Contents
-
Overview
-
Who should attend
-
Learning objectives
-
Course agenda and content
-
Prerequisites
- Training approach
- Examination
- Competence domains being tested
- Certification
-
General course information
ISO/ IEC 27001: Information Technoogy - Security Techniques - Information Security Management Systems - Requirements
Overview
This 5-day intensive course enables participants to:
-
Develop the expertise needed to audit an Information Security Management System (ISMS)
-
Manage a team of auditors
-
Apply widely recognized audit principles, procedures and techniques.
-
-
During the training, delegates will acquire the knowledge and skills needed to proficiently plan and perform internal and external audits, in compliance with the certification process of the ISO/IEC 27001:2005 standard.
-
-
Based on practical exercises,delegates will develop the skills (mastering audit techniques) and competencies (managing audit teams and audit programme, communicating with customers, conflict resolution, etc.) necessary to conduct an audit efficiently.
Training Course details
-
5 days (09.00 - 17.00 GMT)
-
Online instructor-led via zoom.us
-
£1190 + VAT per delegate
-
Deadline for payment/ registration: 2 calendar days before course start
-
Included: 5 days online instructor-led training, delegate workbook, online exam, and certificate.
Onsite training
Please refer to our Terms & Conditions:
-
Trainer's expenses for onsite training, paid by the client
-
Fixed onsite training expenses policy
The training is compatible with ISO/IEC 27031: 2011 Guidelines for Information and Communication Technology (ICT) Readiness for Business Continuity.
N.B It is not the intent of ISO 27001 to imply uniformity in the structure of an ISMS, but for an organization to design an ISMS that is appropriate to its needs, and meets the requirements of its interested parties.
Who Should Attend
-
Internal auditors
-
Auditors wanting to perform and lead Information Security Management System (ISMS) certification audits
-
Project managers or consultants wanting to master the ISMS audit process
-
Those responsible for Information security conformity in an organization
-
Members of an information security management team
-
Expert advisors in IT
-
Technical experts preparing to join an Information security audit function.
Learning Objectives
On completion of training, you will have acquired the expertise to:
-
Perform an ISO 27001 internal audit, as specified by ISO 19011
-
Perform an ISO 27001 certification audit, as specified by ISO 19011, ISO 17021 and ISO 27006
-
Manage an ISMS audit team
Also, you will have understood the following:
-
The application of the ISMS in the context of ISO 27001
-
The relationship between an ISMS, including risk management, controls and compliance with the requirements of different stakeholders of the organization
-
How to improve the ability to analyse the internal and external environment of an organization, risk assessment and audit decision-making in the context of an ISMS.
Course Agenda and Content
Day 1: Introduction to the management of an ISMS based on the Requirements of ISO 27001
-
Normative, regulatory and legal framework related to information security
-
Fundamental principles of information security
-
The ISO 27001 certification process
-
The Information Security Management System (ISMS)
-
Detailed presentation of the clauses 4 to 8 of the ISO 27001 standard.
Day 2: Planning and Launching an ISO 27001 audit
-
Fundamental audit concepts and principles
-
Audit approach based on evidence and on risk
-
Preparation of an ISO 27001 certification audit
-
Documenting of an ISMS audit
-
Conducting an opening meeting.
Day 3: Conducting an ISO 27001 audit
-
Communication during the audit
-
Audit procedures: observation, document review, interview, sampling techniques, technical verification, corroboration and evaluation
-
Drafting test plans
-
Formulation of audit findings
-
Drafting of nonconformity reports.
Day 4: Concluding and ensuring the follow-up of an ISO 27001 audit
-
Audit documentation
-
Quality review
-
Conducting a closing meeting and conclusion of an ISO27001 audit
-
Evaluation of corrective action plans
-
Surveillance audit
-
Audit management program
-
Internal audit and second party audit
Day 5: Exam
Prerequisites
The following are general prerequisites for attending our training courses:
-
Proficiency in the English language
-
Consideration for other course participants
-
Willingness to actively participate during the training sessions, and an open mind to learn new ways of working.
Basic knowledge of ISO27001 and ISO 27002 is recommended.
Educational and Training approach
The course covers both theory and practice:
-
Training comprises presentations, workshops and role-play exercises
-
Slide-based training sessions are supported by examples
-
Review exercises to assist the exam preparation
-
Practice test (mock exam) similar to the certification exam.
The training is based on alternation between theory and practice.
Given the practical exercises, the number of training participants is limited.
Examination and Certification
Examination
Following are details of the ISO 27001 Lead Auditor exam:
-
Duration 90 min.
-
Format Closed book
-
Questions 60 multiple choice
-
Pass mark 70% (42 correct answers).
Competence Domains Being Tested
The Lead Auditor exam covers the following competency domains:
-
Fundamental principles and concepts of information security
-
Information Security Management System (ISMS)
-
Fundamental Audit Concepts and Principles
-
Preparation of an ISO 27001 audit
-
Conduct of an ISO 27001 audit
-
Closing an ISO 27001 audit
-
Managing an ISO 27001 audit programme.
Certification
An ISO 27001 Lead Auditor certificate will be issued to delegates who successfully pass the exam.
For general course information please click on the link here.
N.B. Please read our Terms & Conditions (T&Cs) and ask for clarifications, if any, before booking
your training event.
Book now to reserve an on-site or online instructor-led training event of your choice.
For more details about our:
-
List of training courses please click here.
-
Consulting services please click here
-
Workshops please click here.
For queries, including non-obligation quotes, please contact us.
