ISO 27001:2013 ISMS Lead  Auditor Course

Who Should Attend

This Course is designed for:

  1. Chief Information Security Officer
  2. Information Security Managers
  3. Management Representatives
  4. Corporate Governance Manager
  5. Risk & Compliance Manger
  6. Aspirant First, Second and Third party auditors
  7. ISO 27001 Implementation Teams
  8. Individuals who want to become Registered Lead Auditor
  9. Information Security Consultant
  10. Personnel who wish to pursue a career in the field of information security management

Learning Objective 
By the end of the course delegate will be able to:

  1. Understand the purpose of an ISMS
  2. Understand key elements of ISO 19011 and ISO 17021
  3. Apply the requirements of ISO 27001
  4. Plan and conduct an Audit
  5. Report an Audit
  6. Undertake audit follow-up activities
  7. Prepare and advice their organization before third party assessment.
  8. Contribute to the development and improvement of their organization’s information security management system.

Course Techniques 
This highly participative course is a practically based series of sessions using tutorials, case studies, interactive workshops, individual exercises, group activities, role plays and open forum discussions culminating with an examination

Key Contents
This FIVE-DAY course provides an understanding and knowledge of ISO 27001, ISO 19011 and ISO 17021

  1. Information Security Management Systems
  2. The Audit Process
  3. Auditor Activities
  4. Audit Skills

Prior Knowledge Requirement

Knowledge of these information security management principles and concepts:

A. Management systems
• Understand the Plan-Do-Check-Act (PDCA) cycle
• Awareness for the need of information security
• Incorporating management commitment and the interests of stakeholders
• Enhancing societal values
• Using the results of risk assessments to determine appropriate controls to reach acceptable levels of risk
• Incorporating security as an essential element of information networks and systems
• The active prevention and detection of information security incidents
• Ensuring a comprehensive approach to information security management
• Continual reassessment of information security and making of modifications as appropriate
• Using the results of risk assessments to determine appropriate controls to reach acceptable levels of risk

B. An understanding of the requirements of ISO 27001, which may be gained by completing an ISMS Foundation training course or equivalent.

For IN-HOUSE COURSES / Course on your desire date and any further details contact Training Co-ordinator at our office or mobile:0092-0334-3417453