ISO/IEC 27001 Lead Auditor Training Course
ISO/IEC 27001 Lead Auditor
ISO/IEC 27001 Lead Auditor training enables you to develop the necessary expertise to perform an Information Security Management System (ISMS) audit by applying widely recognized audit principles, procedures and techniques.
Why should you attend?
During this training course, you will acquire the knowledge and skills to plan and carry out internal and external audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.
Based on practical exercises, you will be able to master audit techniques and become competent to manage an audit program, audit team, communication with customers, and conflict resolution.
After acquiring the necessary expertise to perform this audit, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27001 Lead Auditor” credential. By holding a PECB Lead Auditor Certificate, you will demonstrate that you have the capabilities and competencies to audit organizations based on best practices.
Who should attend?
- Auditors seeking to perform and lead Information Security Management System (ISMS) certification audits
- Managers or consultants seeking to master an Information Security Management System audit process
- Individuals responsible for maintaining conformance with Information Security Management System requirements
- Technical experts seeking to prepare for an Information Security Management System audit
- Expert advisors in Information Security Management
Learning objectives
- Understand the operations of an Information Security Management System based on ISO/IEC 27001
- Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks
- Understand an auditor’s role to: plan, lead and follow-up on a management system audit in accordance with ISO 19011
- Learn how to lead an audit and audit team
- Learn how to interpret the requirements of ISO/IEC 27001 in the context of an ISMS audit
- Acquire the competencies of an auditor to: plan an audit, lead an audit, draft reports, and follow-up on an audit in compliance with ISO 19011
Educational approach
- This training is based on both theory and best practices used in ISMS audits
- Lecture sessions are illustrated with examples based on case studies
- Practical exercises are based on a case study which includes role playing and discussions
- Practice tests are similar to the Certification Exam
Course Outline
Day 1: Introduction to the information security management system (ISMS) and ISO/IEC 27001
Day 2: Audit principles, preparation, and initiation of an audit
Day 3: On-site audit activities
Day 4: Closing the audit
Day 5: Certification Exam
Requirements
A fundamental understanding of ISO/IEC 27001 and comprehensive knowledge of audit principles.
Need help picking the right course?
ISO/IEC 27001 Lead Auditor Training Course - Booking
ISO/IEC 27001 Lead Auditor Training Course - Enquiry
ISO/IEC 27001 Lead Auditor - Consultancy Enquiry
Testimonials (1)
Speed of response and communication
Bader Bin rubayan - Lean Business Services
Course - ISO/IEC 27001 Lead Implementer
Provisonal Upcoming Courses (Contact Us For More Information)
Related Courses
IBM Qradar SIEM: Beginner to Advanced
14 HoursThis instructor-led, live training in the UK (online or onsite) is aimed at security engineers who wish to use IBM Qradar SIEM to address pressing security use cases.
By the end of this training, participants will be able to:
- Gain visibility into enterprise data across on-premise and cloud environments.
- Automate security intelligence to hunt threats and to contain risks.
- Detect, identify, and prioritize threats.
Lead Disaster Recovery Manager
35 HoursLead Disaster Recovery Manager training enables you to develop the necessary expertise to support an organization in implementing, maintaining and managing an ongoing Disaster Recovery Plan. During this training course, you will also gain a comprehensive knowledge of the best practices of Disaster Recovery processes and ICT Disaster Recovery services as part of business continuity management.
After mastering all the necessary concepts of Disaster Recovery processes, you can sit for the exam and apply for a “PECB Certified Lead Disaster Recovery Manager” credential. By holding a PECB Lead Disaster Recovery Manager Certificate, you will be able to demonstrate that you have the practical knowledge and professional capabilities to support and lead Disaster Recovery teams in implementing Disaster Recovery strategies based on best practices.
Who should attend?
- Disaster Recovery professionals or consultants seeking to master the necessary concepts and processes related to recovery strategies
- Managers responsible to establish a Disaster Recovery plan in an organization
- Individuals responsible for maintaining conformance with organization`s Disaster Recovery requirements
- Disaster Recovery team members
Learning objectives
- Acknowledge the correlation between Disaster Recovery, Business Continuity Management, Information Security and other IT areas and frameworks
- Master the concepts, approaches, methods and techniques used for the implementation and effective management of a Disaster Recovery Plan
- Learn how to interpret the ICT Disaster Recovery strategies in the specific context of an organization
- Learn how to support an organization to effectively plan, implement, manage, monitor and maintain DR services based on best practices
- Acquire the expertise to advise an organization in implementing an effective Disaster Recovery Plan based on best practices
Educational approach
- This training is based on both theory and best practices used in the implementation and management of a DR plan
- Lecture sessions are illustrated with examples based on case studies
- Practical exercises are based on a case study which includes role playing and discussions
- Practice tests are similar to the Certification Exam
General Information
- Certification fees are included on the exam price
- Training material containing over 450 pages of information and practical examples will be distributed
- A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
- In case of exam failure, you can retake the exam within 12 months for free
ISO 22301 Foundation
14 HoursWhy should you attend?
This training course is designed to help participants understand the fundamental concepts and principles of a business continuity management system (BCMS) based on ISO 22301. By attending this training course, participants will learn more about the structure and requirements of the standard including the BCMS policy, the top management’s commitment, internal audit, management review, and continual improvement process.
After attending the training course, you can sit the exam and, if you successfully pass it, you can apply for the “PECB Certificate Holder in ISO 22301 Foundation” credential. A PECB Foundation certificate shows that you have knowledge on the fundamental concepts, principles, methodologies, requirements, framework, and management approach used in business continuity.
Who should attend?
- Individuals involved in business continuity
- Individuals seeking to gain knowledge about the main processes of business continuity management systems (BCMS)
- Individuals interested to pursue a career in business continuity
Learning objectives
- Acknowledge the correlation between ISO 22301 and other standards and regulatory frameworks
- Understand the components and the operation of a BCMS based on ISO 22301 and its principal processes
- Understand the concepts, approaches, methods, and techniques used for the implementation and management of a BCMS
Educational approach
- Lecture sessions include discussion questions and examples.
- The exercises include multiple-choice quizzes.
- The participants are encouraged to intercommunicate and engage in discussion and the completion of quizzes.
- Quizzes are similar to the certificate exam.
ISO 22301 Introduction
7 HoursISO 22301 Introduction training course enables you to comprehend the basic concepts of a Business Continuity Management System (BCMS).
By attending the ISO 22301 Introduction course, you will understand the importance of a Business Continuity Management System and the benefits that businesses, society and governments can obtain.
Who should attend?
- Individuals interested in Business Continuity Management
- Individuals seeking to gain knowledge about the main processes of a Business Continuity Management System (BCMS)
Learning objectives
- Understand the concepts, approaches, methods, and techniques used to implement a Business Continuity Management System
- Understand the basic elements of a Business Continuity Management System
ISO 22301 Lead Auditor
35 HoursAfter attending the training course, you can sit the exam and, if you successfully pass the exam, you can apply for the “PECB Certified ISO 22301 Lead Auditor” credential. The internationally recognized “PECB Certified ISO 22301 Lead Auditor” certificate will prove that you have the professional capabilities and competences to audit organizations based on the requirements of ISO 22301 and auditing best practices.
Who should attend?
- Auditors seeking to perform and lead business continuity management system (BCMS) audits
- Managers or consultants seeking to master the business continuity management system audit process
- Individuals responsible to maintain conformity with the BCMS requirements in an organization
- Technical experts seeking to prepare for the business continuity management system audit
- Expert advisors in business continuity management
Learning objectives
- Understand a business continuity management system (BCMS) and its processes based on ISO 22301
- Acknowledge the relationship between ISO 22301 and other standards and regulatory frameworks
- Understand the auditor’s role in planning, leading, and following up on a BCMS audit in accordance with ISO 19011
- Interpret the requirements of ISO 22301 in the context of a BCMS audit
- Plan an audit, lead a team of auditors, draft reports, and follow up on an audit
- Act with due professional care during an audit
Educational approach
- This training course is based on theory, auditing best practices used in BCMS audits, ISO 22301 requirements, and international auditing standards.
- Lecture sessions are illustrated with practical exercises based on a case study which includes role-playing and discussions.
- The participants are encouraged to intercommunicate and engage in discussions and exercises.
- The exercises are similar to the certification exam.
General Information
- Certification fees are included in the exam price. After completion of the course you will be able to book the exam.
- Participants will be provided with the training material containing over 450 pages of explanatory information and practical examples.
- An Attendance Record worth 31 CPD (Continuing Professional Development) credits will be issued to participants who have attended the training course.
- In case candidates fail the exam, they can retake the exam within 12 months following the initial exam for free.
ISO 22301 Lead Implementer
35 HoursAfter attending the training course, you can sit the exam and, if you successfully pass the exam, you can apply for the “Certified ISO 22301 Lead Implementer” credential. The internationally recognized “Certified ISO 22301 Lead Implementer” certificate will prove that you have the professional capabilities and practical knowledge to implement a BCMS based on the requirements of ISO 22301 in an organization.
Who should attend?
- Project managers and consultants involved in business continuity
- Expert advisors seeking to master the implementation of the business continuity management system
- Individuals responsible to maintain conformity with BCMS requirements within an organization
- Members of the BCMS team
Learning objectives
- Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of a BCMS
- Learn how to interpret and implement the requirements of ISO 22301 in the specific context of an organization
- Understand the operation of the business continuity management system and its processes based on ISO 22301
- Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and continually improving a BCMS
Educational approach
- This training course is based on theory, implementation best practices, and ISO 22301 requirements useful for the implementation of a BCMS.
- Lecture sessions are illustrated with practical exercises based on a case study which includes role-playing and discussions.
- The participants are encouraged to intercommunicate and engage in discussions and exercises.
- The exercises are similar to the certification exam.
General Information
- Certification fees are included in the exam price. After completion of the course you will be able to book the exam.
- Participants will be provided with the training material containing over 450 pages of explanatory information and practical examples.
- An Attendance Record worth 31 CPD (Continuing Professional Development) credits will be issued to participants who have attended the training course.
- In case candidates fail the exam, they can retake the exam within 12 months following the initial exam for free.
ISO/IEC 27001 Foundation
14 HoursWhy should you attend?
ISO/IEC 27001 Foundation training allows you to learn the basic elements to implement and manage an Information Security Management System as specified in ISO/IEC 27001. During this training course, you will be able to understand the different modules of ISMS, including ISMS policy, procedures, performance measurements, management commitment, internal audit, management review and continual improvement.
After completing this course, you can sit for the exam and apply for the “PECB Certified ISO/IEC 27001 Foundation” credential. A PECB Foundation Certificate shows that you have understood the fundamental methodologies, requirements, framework and management approach.
Who should attend?
- Individuals involved in Information Security Management
- Individuals seeking to gain knowledge about the main processes of Information Security Management Systems (ISMS)
- Individuals interested to pursue a career in Information Security Management
Educational approach
- Lecture sessions are illustrated with practical questions and examples
- Practical exercises include examples and discussions
- Practice tests are similar to the Certification Exam
ISO 27002 Lead Manager
35 HoursISO/IEC 27002 Lead Manager training enables you to develop the necessary expertise and knowledge to support an organization in implementing and managing Information Security controls as specified in ISO/IEC 27002.
After completing this course, you can sit for the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. A PECB Lead Manager Certification, proves that you have mastered the principles and techniques for the implementation and management of Information Security Controls based on ISO/IEC 27002.
Who should attend?
- Managers or consultants seeking to implement an Information Security Management System (ISMS) based on ISO/IEC 27001 and ISO/IEC 27002
- Project managers or consultants seeking to master the Information Security Management System implementation process
- Individuals responsible for the information security, compliance, risk, and governance, in an organization
- Members of information security teams
- Expert advisors in information technology
- Information Security officers
- Privacy officers
- IT professionals
- CTOs, CIOs and CISOs
Learning objectives
- Master the implementation of Information Security controls by adhering to the framework and principles of ISO/IEC 27002
- Gain a comprehensive understanding of the concepts, approaches, standards, methods and techniques required for the effective implementation and management of Information Security controls
- Comprehend the relationship between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behavior
- Understand the importance of information security for the strategy of the organization
- Master the implementation of information security management processes
- Master the formulation and implementation of security requirements and objectives
Educational approach
- This training is based on both theory and practice
- Sessions of lectures illustrated with examples based on real cases
- Practical exercises based on case studies
- Review exercises to assist the exam preparation
- Practice test similar to the certification exam
General Information
- Certification fees are included on the exam price
- Training material containing over 500 pages of information and practical examples will be distributed to the participants
- A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued to the participants
- In case of exam failure, you can retake the exam within 12 months for free
ISO/IEC 27005 Foundation
14 HoursISO/IEC 27005 Foundation training enables you to learn the basic elements to manage Information Security Risks as specified in ISO/IEC 27005. During this training course, you will be able to understand the concepts and models of Information Security Risk Management.
After completing this course, you can sit for the exam and apply for the “PECB Certified ISO/IEC 27005 Foundation” credential. A PECB Foundation Certificate shows that you have understood the fundamental methodologies, processes and management approach.
Who should attend?
- Individuals interested in Information Security Risk Management
- Individuals seeking to gain knowledge about the main processes of Information Security Risk Management
- Individuals interested to pursue a career in Information Security Risk Management
The “PECB Certified ISO/IEC 27005 Foundation” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:
Domain 1: Fundamental principles and concepts of Risk Management in Information Security
Domain 2: Information Security Risk Management approaches and processes
After successfully completing the exam, you can apply for the “PECB Certified ISO/IEC 27005 Foundation” credential.
General Information
Certification fees are included in the exam price
- Training material containing over 200 pages of information and practical examples will be distributed
- A participation certificate of 14 CPD (Continuing Professional Development) credits will be issued
- In case of exam failure, you can retake the exam within 12 months for free
ISO/IEC 27005 Introduction
7 HoursWhy should you attend?
ISO/IEC 27005 training course enables you to comprehend the basic concepts of Information Security Risk Management by using the standard ISO/IEC 27005 as a reference framework.
By attending the ISO/IEC 27005 Introduction training course, you will understand the importance of Information Security Risk Management and the benefits that businesses, society and governments can obtain.
Who should attend?
- Individuals interested in Information Security Risk Management
- Individuals seeking to gain knowledge about the main processes of Information Security Risk Management
ISO/IEC 27005 Lead Risk Manager
35 HoursISO/IEC 27005 Lead Risk Manager training enables you to acquire the necessary expertise to support an organization in the risk management process related to all assets of relevance for Information Security using the ISO/IEC 27005 standard as a reference framework. During this training course, you will gain a comprehensive knowledge of a process model for designing and developing an Information Security Risk Management program. The training will also contain a thorough understanding of best practices of risk assessment methods such as OCTAVE, EBIOS, MEHARI and harmonized TRA. This training course supports the implementation process of the ISMS framework presented in the ISO/IEC 27001 standard.
After mastering all the necessary concepts of Information Security Risk Management based on ISO/IEC 27005, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27005 Lead Risk Manager” credential. By holding a PECB Lead Risk Manager Certificate, you will be able to demonstrate that you have the practical knowledge and professional capabilities to support and lead a team in managing Information Security Risks.
Who should attend?
- Information Security risk managers
- Information Security team members
- Individuals responsible for Information Security, compliance, and risk within an organization
- Individuals implementing ISO/IEC 27001, seeking to comply with ISO/IEC 27001 or individuals who are involved in a risk management program
- IT consultants
- IT professionals
- Information Security officers
- Privacy officers
Examination - Duration: 3 hours
The “PECB Certified ISO/IEC 27005 Lead Risk Manager” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:
- Domain 1 Fundamental principles and concepts of Information Security Risk Management
- Domain 2 Implementation of an Information Security Risk Management program
- Domain 3 Information security risk assessment
- Domain 4 Information security risk treatment
- Domain 5 Information security risk communication, monitoring and improvement
- Domain 6 Information security risk assessment methodologies
General Information
- Certification fees are included on the exam price
- Training material containing over 350 pages of information and practical examples will be distributed
- A participation certificate of 21 CPD (Continuing Professional Development) credits will be issued
- In case of exam failure, you can retake the exam within 12 months for free
ISO/IEC 27001 Lead Implementer
35 HoursInformation security threats and attacks increase and improve constantly. The best form of defense against them is the proper implementation and management of information security controls and best practices. Information security is also a key expectation and requirement of customers, legislators, and other interested parties.
This training course is designed to prepare participants in implementing an information security management system (ISMS) based on ISO/IEC 27001. It aims to provide a comprehensive understanding of the best practices of an ISMS and a framework for its continual management and improvement.
After attending the training course, you can take the exam. If you successfully pass it, you can apply for a “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.
Who Can Attend?
- Project managers and consultants involved in and concerned with the implementation of an ISMS
- Expert advisors seeking to master the implementation of an ISMS
- Individuals responsible for ensuring conformity to information security requirements within an organization
- Members of an ISMS implementation team
General information
- Certification fees are included in the exam price
- Training material containing over 450 pages of information and practical examples will be distributed
- A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
- In case of exam failure, you can retake the exam within 12 months free of charge
Educational approach
- This training course contains essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS.
- The participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
- The exercises are based on a case study.
- The structure of the quizzes is similar to that of the certification exam.
Learning objectives
This training course will help you:
- Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
- Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
- Understand the operation of an information security management system and its processes based on ISO/IEC 27001
- Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organization
- Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS
ISO/IEC 27035 Foundation
14 HoursISO/IEC 27035 Foundation training enables you to learn the basic elements to implement an Incident Management Plan and manage Information Security Incidents. During this training course, you will be able to understand Information Security Incident Management processes.
After completing this course, you can sit for the exam and apply for the “PECB Certified ISO/IEC 27035 Foundation” credential. A PECB Foundation Certificate shows that you have understood the fundamental methodologies, requirements, and management approach.
Who should attend?
- Individuals interested in Information Security Incident Management process approaches
- Individuals seeking to gain knowledge about the main principles and concepts of Information Security Incident Management
- Individuals interested to pursue a career in Information Security Incident Management
Learning objectives
- Understand the basic concepts of Information Security Incident Management
- Acknowledge the correlation between ISO/IEC 27035 and other standards and regulatory frameworks
- Understand the process approaches used to effectively manage Information Security Incidents
Educational approach
- Lecture sessions are illustrated with practical questions and examples
- Practical exercises include examples and discussions
- Practice tests are similar to the Certification Exam
General Information
- Certification fees are included on the exam price
- Training material containing over 200 pages of information and practical examples will be distributed
- A participation certificate of 14 CPD (Continuing Professional Development) credits will be issued
- In case of exam failure, you can retake the exam within 12 months for free
ISO/IEC 27035 Lead Incident Manager
35 HoursISO/IEC 27035 Lead Incident Manager training enables you to acquire the necessary expertise to support an organization in implementing an Information Security Incident Management plan based on ISO/IEC 27035. During this training course, you will gain a comprehensive knowledge of a process model for designing and developing an organizational incident management plan. The compatibility of this training course with ISO/IEC 27035 also supports the ISO/IEC 27001 by providing guidance for Information Security Incident Management.
After mastering all the necessary concepts of Information Security Incident Management, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27035 Lead Incident Manager” credential. By holding a PECB Lead Incident Manager Certificate, you will be able to demonstrate that you have the practical knowledge and professional capabilities to support and lead a team in managing Information Security Incidents.
Who should attend?
- Information Security Incident managers
- IT Managers
- IT Auditors
- Managers seeking to establish an Incident Response Team (IRT)
- Managers seeking to learn more about operating effective IRTs
- Information Security risk managers
- IT system administration professionals
- IT network administration professionals
- Members of Incident Response Teams
- Individuals responsible for Information Security within an organization
Learning objectives
- Master the concepts, approaches, methods, tools and techniques that enable an effective Information Security Incident Management according to ISO/IEC 27035
- Acknowledge the correlation between ISO/IEC 27035 and other standards and regulatory frameworks
- Acquire the expertise to support an organization to effectively implement, manage and maintain an Information Security Incident Response plan
- Acquire the competence to effectively advise organizations on the best practices of Information Security Incident Management
- Understand the importance of establishing well-structured procedures and policies for Incident Management processes
- Develop the expertise to manage an effective Incident Response Team
Educational approach
- This training is based on both theory and best practices used in the implementation of an Information Security Incident Management plan
- Lecture sessions are illustrated with examples based on case studies
- Practical exercises are based on a case study which includes role playing and discussions
- Practice tests are similar to the Certification Exam
General Information
- Certification fees are included on the exam price
- Training material containing over 450 pages of information and practical examples will be distributed
- A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
- In case of exam failure, you can retake the exam within 12 months for free
ISO/IEC 27701 Foundation
14 HoursThe ISO/IEC 27701 Foundation training course is designed to help participants understand the basic concepts and principles of a Privacy Information Management System (PIMS) based on ISO/IEC 27701. Moreover, during this training course, students will learn more on the structure of the standard including its requirements, guidance and controls on the protection of the privacy of Personally Identifiable Information (PII) principals and the relationship of the standard with ISO/IEC 27001 and ISO/IEC 27002.
After completing this training course, you can sit for the exam and, if you successfully pass it, you can apply for the “PECB Certified ISO/IEC 27701 Foundation” credential. A PECB Foundation certificate proves that you have comprehended the fundamental methodologies, requirements, guidelines, framework and managerial approach.
Who should attend?
- Individuals involved in information security and privacy management
- Individuals seeking to gain knowledge on the main processes of a privacy information management system
- Individuals interested in pursuing a career in privacy information management
- Individuals responsible for personally identifiable information (PII) within organizations
- Information security team members
Learning objectives
- Understand the fundamental concepts and principles of a privacy information management system (PIMS) based on ISO/IEC 27701
- Identify the relationship between ISO/IEC 27701, ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
- Understand the approaches, standards, methods, and techniques used for the implementation and management of a PIMS
Educational approach
- Lecture sessions are complemented by discussions questions and examples
- The exercises include multiple-choice quizzes and essay-type exercises
- Exercise questions and quizzes are similar to the certification exam
General Information
- Participants will be provided with the training material containing over 200 pages of explanatory information, discussion topics, examples and exercises.
- An attendance record certificate of 14 CPD (Continuing Professional Development) credits will be issued to the participants who have attended the training course.