ISO 27001:2023 Lead Auditor of the Information Security Management System Training Course
Objectives
- Gaining knowledge of ISO 27001:2023
- Gaining knowledge on how to audit in accordance with the standard
- Getting to know good practices
Format of the Course
- Interactive lecture and discussion.
- Lots of exercises and practice.
- Hands-on implementation in a live-lab environment.
Course Customization Options
- To request a customized training for this course, please contact us to arrange.
Course Outline
I. Introduction to Information Security
1. Systemic information security management
2. Benefits and added value for the organization
II. Overview of ISO 27001 requirements
1. What are the requirements of the standard?
2. What should you pay special attention to?
3. Identification of documentation requirements
4. Overview of Annex A
III. Information Security Management System compliant with the requirements of ISO 27001
1. Elements of the Information Security Management System according to ISO
27001
2. Exercises in interpreting and analysing the requirements of ISO 27001
IV. Audits – general information
1. Introduction to Audit
2. Entire audit
3. Audit criteria
4. Types of audits
V. Audit planning and preparation
1. Audit criteria and scope
2. Selection of a team of auditors
3. Process approach to internal audits
4. Important Aspects When Creating a Control Question List
5. Conducting an audit according to ISO 19011:2018
6. Practical exercises
VI. Conducting an audit – rules for conducting an on-site audit
1. Auditing techniques
2. Objective evidence
3. Identification of non-conformities and the ability to demonstrate them
4. Competencies of a watering auditor
5. Practical exercises
VII. Documenting audit results
1. Skilful formulation of inconsistencies
2. Documenting non-conformities
3. Identifying and documenting insights and potential for improvement
4. Summary of Audit Results – Audit Report
5. Practical exercises
VIII. Effective post-audit activities
1. Responsibilities related to the initiation of corrective and corrective actions
2. The Importance of Precisely Determining the Causes of Non-Conformity
3. Define corrective actions
4. Evaluation of the effectiveness of actions
5. Post-audit activities in relation to insights and potentials for improvement
6. Practical exercises
IX. Discussion and summary
Requirements
Audience
- Individuals preparing for the position of Lead Auditor 27001:2023
- Anyone interested in the topic
Need help picking the right course?
ISO 27001:2023 Lead Auditor of the Information Security Management System Training Course - Booking
ISO 27001:2023 Lead Auditor of the Information Security Management System Training Course - Enquiry
ISO 27001:2023 Lead Auditor of the Information Security Management System - Consultancy Enquiry
Provisonal Upcoming Courses (Contact Us For More Information)
Related Courses
GDPR - Certified Data Protection Officer
35 HoursThe PECB Certified Data Protection Officer training course enables you to acquire the necessary knowledge and skills, and develop the competence to perform the role of the data protection officer in a GDPR compliance program implementation.
Why should you attend?
As data protection is becoming more and more valuable, the need for organizations to protect these data is also constantly increasing. Besides violating the fundamental rights and freedoms of persons, not complying with the data protection regulations can lead to risky situations that could harm an organization’s credibility, reputation, and financial status. This is where your skills as a data protection officers come to place.
The PECB Certified Data Protection Officer training course will help you acquire the knowledge and skills to serve as a Data Protection Officer (DPO) so as to help organizations ensure compliance with the General Data Protection Regulation (GDPR) requirements.
Based on practical exercises, you will be able to master the role of the DPO and become competent to inform, advise, and monitor compliance with the GDPR and cooperate with the supervisory authority.
After attending the training course, you can sit for the exam, and if you successfully pass the exam, you can apply for the “PECB Certified Data Protection Officer” credential. The internationally recognized “PECB Certified Data Protection Officer” certificate will prove that you have the professional capabilities and practical knowledge to advise the controller and the processor on how to meet their obligations regarding the GDPR compliance.
Who should attend?
- Managers or consultants seeking to prepare and support an organization in planning, implementing, and maintaining a compliance program based on the GDPR
- DPOs and individuals responsible for maintaining conformance with the GDPR requirements
- Members of information security, incident management, and business continuity teams
- Technical and compliance experts seeking to prepare for a data protection officer role
- Expert advisors involved in the security of personal data
Learning objectives
- Understand the concepts of the GDPR and interpret its requirements
- Understand the content and the correlation between the General Data Protection Regulation and other regulatory frameworks and applicable standards, such as ISO/IEC 27701 and ISO/IEC 29134
- Acquire the competence to perform the role and daily tasks of the data protection officer in an organization
- Develop the ability to inform, advise, and monitor compliance with the GDPR and cooperate with the supervisory authority
Educational approach
- This training course is based on both theory and best practices used in exercising the role of the DPO.
- Lecture sessions are illustrated with practical exercises based on a case study which include role-playing and discussions.
- The participants are encouraged to intercommunicate and engage in discussions and exercises.
- Practice exercises and quizzes are similar to the certification exam.
General Information
- Participants will be provided with the training course material containing over 450 pages of explanatory information and practical examples.
- An Attendance Record worth 31 CPD (Continuing Professional Development) credits will be issued to participants who have attended the training course.
ISO 14001:2015 Internal Auditor of the Environmental Management System
35 HoursObjectives
- Gain knowledge of ISO 14001:2015
- Gaining knowledge on how to audit in accordance with the standard
- Getting to know good practices
ISO 14001:2015 Requirements
14 HoursObjectives
- Learning about ISO 14001, 2015 edition
- Gaining knowledge on how to audit in accordance with the standard
- Getting to know good practices
ISO 19011:2018 Requirements
14 HoursObjectives
- Gaining knowledge about ISO 19011, 2018 edition
- Gaining knowledge on how to audit in accordance with the standard
- Getting to know good practices
ISO 22301 Lead Auditor
35 HoursAfter attending the training course, you can sit the exam and, if you successfully pass the exam, you can apply for the “PECB Certified ISO 22301 Lead Auditor” credential. The internationally recognized “PECB Certified ISO 22301 Lead Auditor” certificate will prove that you have the professional capabilities and competences to audit organizations based on the requirements of ISO 22301 and auditing best practices.
Who should attend?
- Auditors seeking to perform and lead business continuity management system (BCMS) audits
- Managers or consultants seeking to master the business continuity management system audit process
- Individuals responsible to maintain conformity with the BCMS requirements in an organization
- Technical experts seeking to prepare for the business continuity management system audit
- Expert advisors in business continuity management
Learning objectives
- Understand a business continuity management system (BCMS) and its processes based on ISO 22301
- Acknowledge the relationship between ISO 22301 and other standards and regulatory frameworks
- Understand the auditor’s role in planning, leading, and following up on a BCMS audit in accordance with ISO 19011
- Interpret the requirements of ISO 22301 in the context of a BCMS audit
- Plan an audit, lead a team of auditors, draft reports, and follow up on an audit
- Act with due professional care during an audit
Educational approach
- This training course is based on theory, auditing best practices used in BCMS audits, ISO 22301 requirements, and international auditing standards.
- Lecture sessions are illustrated with practical exercises based on a case study which includes role-playing and discussions.
- The participants are encouraged to intercommunicate and engage in discussions and exercises.
- The exercises are similar to the certification exam.
General Information
- Certification fees are included in the exam price. After completion of the course you will be able to book the exam.
- Participants will be provided with the training material containing over 450 pages of explanatory information and practical examples.
- An Attendance Record worth 31 CPD (Continuing Professional Development) credits will be issued to participants who have attended the training course.
- In case candidates fail the exam, they can retake the exam within 12 months following the initial exam for free.
ISO 22301 Lead Implementer
35 HoursAfter attending the training course, you can sit the exam and, if you successfully pass the exam, you can apply for the “Certified ISO 22301 Lead Implementer” credential. The internationally recognized “Certified ISO 22301 Lead Implementer” certificate will prove that you have the professional capabilities and practical knowledge to implement a BCMS based on the requirements of ISO 22301 in an organization.
Who should attend?
- Project managers and consultants involved in business continuity
- Expert advisors seeking to master the implementation of the business continuity management system
- Individuals responsible to maintain conformity with BCMS requirements within an organization
- Members of the BCMS team
Learning objectives
- Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of a BCMS
- Learn how to interpret and implement the requirements of ISO 22301 in the specific context of an organization
- Understand the operation of the business continuity management system and its processes based on ISO 22301
- Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and continually improving a BCMS
Educational approach
- This training course is based on theory, implementation best practices, and ISO 22301 requirements useful for the implementation of a BCMS.
- Lecture sessions are illustrated with practical exercises based on a case study which includes role-playing and discussions.
- The participants are encouraged to intercommunicate and engage in discussions and exercises.
- The exercises are similar to the certification exam.
General Information
- Certification fees are included in the exam price. After completion of the course you will be able to book the exam.
- Participants will be provided with the training material containing over 450 pages of explanatory information and practical examples.
- An Attendance Record worth 31 CPD (Continuing Professional Development) credits will be issued to participants who have attended the training course.
- In case candidates fail the exam, they can retake the exam within 12 months following the initial exam for free.
ISO 26262 Automotive Functional Safety
28 HoursISO 26262 defines the requirements for functional safety in the automotive sector.
This instructor-led, live training (online or onsite) is aimed at automotive professionals who wish to implement the ISO 26262 standard within their organization.
By the end of this training, participants will be able to:
- Understand functional safety as it relates to automotive hardware and software development.
- Understand the legal responsibilities and compliance requirements of ISO 26262.
- Implement the safety processes prescribed in ISO 26262.
Format of the Course
- Interactive lecture and discussion.
- Lots of exercises and practice.
- Hands-on implementation in a live-lab environment.
Course Customization Options
- To request a customized training for this course, please contact us to arrange.
ISO 26262 Part 6: Safe Software Development
7 HoursThis instructor-led, live training in the UK (online or onsite) is aimed at automotive professionals who wish to implement the ISO 26262 standard within their organization.
By the end of this training, participants will be able to:
- Establish complete and consistent software safety requirements.
- Analyze software architectures for safety, including freedom from independence (FFI) analysis.
- Build processes that use documentation tools to improve software quality.
- Plan and execute an integration test strategy for software and systems.
- Implement and test software units for safety applications.
ISO 27001:2023 Internal Auditor of the Information Security Management System
35 HoursObjectives
- Gaining knowledge of ISO 27001:2023
- Gaining knowledge on how to audit in accordance with the standard
- Getting to know good practices
ISO 27001:2023 Requirements
14 HoursObjectives
- Gaining knowledge about changes to ISO 27001 2023 edition
- Gaining knowledge on how to audit in accordance with the standard
- Getting to know good practices
ISO/IEC 27001 Foundation
14 HoursWhy should you attend?
ISO/IEC 27001 Foundation training allows you to learn the basic elements to implement and manage an Information Security Management System as specified in ISO/IEC 27001. During this training course, you will be able to understand the different modules of ISMS, including ISMS policy, procedures, performance measurements, management commitment, internal audit, management review and continual improvement.
After completing this course, you can sit for the exam and apply for the “PECB Certified ISO/IEC 27001 Foundation” credential. A PECB Foundation Certificate shows that you have understood the fundamental methodologies, requirements, framework and management approach.
Who should attend?
- Individuals involved in Information Security Management
- Individuals seeking to gain knowledge about the main processes of Information Security Management Systems (ISMS)
- Individuals interested to pursue a career in Information Security Management
Educational approach
- Lecture sessions are illustrated with practical questions and examples
- Practical exercises include examples and discussions
- Practice tests are similar to the Certification Exam
ISO/IEC 27001 Lead Auditor
35 HoursISO/IEC 27001 Lead Auditor
ISO/IEC 27001 Lead Auditor training enables you to develop the necessary expertise to perform an Information Security Management System (ISMS) audit by applying widely recognized audit principles, procedures and techniques.
Why should you attend?
During this training course, you will acquire the knowledge and skills to plan and carry out internal and external audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.
Based on practical exercises, you will be able to master audit techniques and become competent to manage an audit program, audit team, communication with customers, and conflict resolution.
After acquiring the necessary expertise to perform this audit, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27001 Lead Auditor” credential. By holding a PECB Lead Auditor Certificate, you will demonstrate that you have the capabilities and competencies to audit organizations based on best practices.
Who should attend?
- Auditors seeking to perform and lead Information Security Management System (ISMS) certification audits
- Managers or consultants seeking to master an Information Security Management System audit process
- Individuals responsible for maintaining conformance with Information Security Management System requirements
- Technical experts seeking to prepare for an Information Security Management System audit
- Expert advisors in Information Security Management
Learning objectives
- Understand the operations of an Information Security Management System based on ISO/IEC 27001
- Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks
- Understand an auditor’s role to: plan, lead and follow-up on a management system audit in accordance with ISO 19011
- Learn how to lead an audit and audit team
- Learn how to interpret the requirements of ISO/IEC 27001 in the context of an ISMS audit
- Acquire the competencies of an auditor to: plan an audit, lead an audit, draft reports, and follow-up on an audit in compliance with ISO 19011
Educational approach
- This training is based on both theory and best practices used in ISMS audits
- Lecture sessions are illustrated with examples based on case studies
- Practical exercises are based on a case study which includes role playing and discussions
- Practice tests are similar to the Certification Exam
ISO 27002 Lead Manager
35 HoursISO/IEC 27002 Lead Manager training enables you to develop the necessary expertise and knowledge to support an organization in implementing and managing Information Security controls as specified in ISO/IEC 27002.
After completing this course, you can sit for the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. A PECB Lead Manager Certification, proves that you have mastered the principles and techniques for the implementation and management of Information Security Controls based on ISO/IEC 27002.
Who should attend?
- Managers or consultants seeking to implement an Information Security Management System (ISMS) based on ISO/IEC 27001 and ISO/IEC 27002
- Project managers or consultants seeking to master the Information Security Management System implementation process
- Individuals responsible for the information security, compliance, risk, and governance, in an organization
- Members of information security teams
- Expert advisors in information technology
- Information Security officers
- Privacy officers
- IT professionals
- CTOs, CIOs and CISOs
Learning objectives
- Master the implementation of Information Security controls by adhering to the framework and principles of ISO/IEC 27002
- Gain a comprehensive understanding of the concepts, approaches, standards, methods and techniques required for the effective implementation and management of Information Security controls
- Comprehend the relationship between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behavior
- Understand the importance of information security for the strategy of the organization
- Master the implementation of information security management processes
- Master the formulation and implementation of security requirements and objectives
Educational approach
- This training is based on both theory and practice
- Sessions of lectures illustrated with examples based on real cases
- Practical exercises based on case studies
- Review exercises to assist the exam preparation
- Practice test similar to the certification exam
General Information
- Certification fees are included on the exam price
- Training material containing over 500 pages of information and practical examples will be distributed to the participants
- A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued to the participants
- In case of exam failure, you can retake the exam within 12 months for free
ISO/IEC 27005 Foundation
14 HoursISO/IEC 27005 Foundation training enables you to learn the basic elements to manage Information Security Risks as specified in ISO/IEC 27005. During this training course, you will be able to understand the concepts and models of Information Security Risk Management.
After completing this course, you can sit for the exam and apply for the “PECB Certified ISO/IEC 27005 Foundation” credential. A PECB Foundation Certificate shows that you have understood the fundamental methodologies, processes and management approach.
Who should attend?
- Individuals interested in Information Security Risk Management
- Individuals seeking to gain knowledge about the main processes of Information Security Risk Management
- Individuals interested to pursue a career in Information Security Risk Management
The “PECB Certified ISO/IEC 27005 Foundation” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:
Domain 1: Fundamental principles and concepts of Risk Management in Information Security
Domain 2: Information Security Risk Management approaches and processes
After successfully completing the exam, you can apply for the “PECB Certified ISO/IEC 27005 Foundation” credential.
General Information
Certification fees are included in the exam price
- Training material containing over 200 pages of information and practical examples will be distributed
- A participation certificate of 14 CPD (Continuing Professional Development) credits will be issued
- In case of exam failure, you can retake the exam within 12 months for free