ISO 27001 Information Security Management System (ISMS)
Lead Auditor Training Course

Enter button with closed padlock on computer

Cybercrime continues to be a major risk, costing money and causing damage to organizations. Key stakeholders, customers, shareholders and regulators expect all organizations to mitigate this risk.

ISO 27001, the internationally recognized standard for security management, allows you to create your own Information Security Management System (ISMS) and audit it internally. Planning and implementing an ISMS is a key protection tool for any business and courses can be customized for your convenience, either online, classroom based or on site.

Lead Auditor Course ISO 27001 enables you to assess your information management system with the help of experts who provide independent advice that allows you to implement the improvements of ISMS to suit your business. With our unrivalled experience, global presence, and multi delivery methods, partnering with SGS is the right choice for you, your organization and your customers.

To find out more about ISO 27001 ISMS Lead Auditor Course from SGS Academy, contact us today.

Course Description

The objective of this course is to give learners the relevant skills and knowledge to carry out audits of ISMS against ISO 27001 standards. This course is certificated by the Chartered Quality Institute (CQI) and International Register of Certificated Auditors (IRCA). CQI/IRCA Course Certification Number 17279 PR 320.

General Information

Duration: 5 days (40 hours)
Delivery: Virtual Instructor Led Training (VILT)
Language: Bi-lingual (English and Bahasa)

Learning Objective

Upon completion of this course, learners will be able to:

  • Explain the purpose and business benefits of an ISMS, of information security management systems standards, of management system audits and of third party certification
  • Explain the role of an auditor to plan, conduct, report and follow up an ISMS audit in accordance with ISO 19011 and ISO/IEC 17021, where appropriate
  • Plan, conduct, report and follow up an audit of an ISMS to establish conformity or otherwise with ISO/IEC 27001 (with ISO/IEC 27002) in accordance with ISO19011 and ISO/IEC 17021 where appropriate

Prior Knowledge Requirements

Knowledge of the requirements of ISO/IEC 27001 (with ISO/IEC 27002) and the commonly used information security management terms and definitions, as given in ISO/IEC 27000 (overview and vocabulary), which may be gained by completing an CQI/IRCA certified ISMS Foundation Training Course or equivalent.

Course Contents

  • ISMS and the ISO/IEC 27000 series of standards
  • Process-based ISMS
  • Information security legislation
  • Registration, certification and auditor competence
  • Audits: definition, principles and types
  • The audit process
  • Preparing for the on-site audit (audit stage 1)
  • Developing the checklist
  • Conducting the on-site audit (audit stage 2)
  • Audit review
  • Audit role play
  • Audit reporting and follow-up
  • Case study
  • Audit role play activity
  • Specimen examination
  • Final examination
Cyber Security Digital Crime Concept

ISO/IEC 27001:2013 Information Security Management Systems (ISMS) Lead Auditor Training Course

Download Syllabus

Why choose SGS Academy?

As a world leader in professional training, drawing on years of worldwide experience and a unique global reach, we offer the best in professional development training. Our courses cover a wide range of industries and are taught by experts in their fields. We provide training for the world’s largest companies and government organizations.

Request Information