fr
en
ISO/IEC 27001 Lead Auditor: Information Security Management
The ISO/IEC 27001:2022 standard sets out, in the form of requirements, a set of organizational and technical best practices to be implemented in order to ensure the security of an information system.
The objective of this training is to provide you with the expertise required to conduct, either individually or as part of a team, an audit of Information Security Management Systems (ISMS) in accordance with ISO/IEC 27001:2022. This course will also teach you the skills and personal attributes necessary to conduct such audits, as defined in the ISO 19011 standard “Guidelines for Auditing Management Systems.”
At the end of this training, you will take the PECB ISO/IEC 27001 Lead Auditor certification exam. Successfully passing this exam will demonstrate that you have mastered auditing techniques such as team management, audit planning, client communication, conflict resolution, and more.
Targets
By the end of the ISO/IEC 27001 Lead Auditor training, you will be able to:
- Understand how an Information Security Management System (ISMS) operates in accordance with ISO/IEC 27001:2022
- Describe the relationship between ISO/IEC 27001:2022, ISO/IEC 27002:2022, and other related international standards
- Understand the activities of an auditor (planning, managing, and monitoring a management system audit in accordance with ISO 19011:2018)
- Lead an ISMS audit and manage an audit team
- Apply the guidelines of ISO/IEC 27001:2022 in the context of an ISMS audit
- Acquire the knowledge and skills required of an auditor
- Successfully pass the ISO/IEC 27001 Lead Auditor exam and obtain the PECB Certified ISO/IEC 27001 Lead Auditor certification
Program
Introduction Round
- Individual introductions
- Exploration of participants’ expectations and objectives
- Introduction to the training framework
- Alignment with specific goals and challenges
- Identification of participants’ expectations and perspectives
--------------------------------------------------------------------------------------------------------------------
Day 1:
- The normative, regulatory, and legal framework related to information security
- Fundamental principles of information security
- The ISO/IEC 27001:2022 Lead Auditor certification process
- Information Security Management System (ISMS)
- Detailed presentation of clauses 4 to 8 of the ISO/IEC 27001:2022 standard
Day 2:
- Concepts and fundamental principles of auditing
- Evidence-based auditing approach
- Preparing for an ISO/IEC 27001:2022 certification audit
- Document review of the ISMS
- Conducting an opening meeting
Day 3:
- Communication during an audit
- Audit procedures: observation, document review, interviews, sampling techniques, technical verification, collaboration, and evaluation
- Verification testing plans
- Formulating audit findings
- Drafting nonconformities
Days 4 & 5:
- Audit documentation
- Quality review
- Closing meeting of an ISO/IEC 27001:2022 audit
- Evaluation of corrective action plans
- Surveillance audit
- Internal audit management program
- Preparation for the ISO/IEC 27001 Lead Auditor certification exam
Note: The course materials and the PECB ISO/IEC 27001 Lead Auditor exam are available in both French and English.
Prerequisites
Attending the ISO/IEC 27001 Lead Auditor training requires the following prerequisites:
- Basic knowledge of ISO/IEC 27001, ISO/IEC 27002, and ISO 19011 standards
Public
This training is intended for the following audiences:
- Individuals who want to master the process of auditing an ISMS
- Individuals responsible for ISMS compliance
- Individuals who want to learn how to prepare an ISMS audit
- Professionals specialized in business continuity management
Strong points
- Practical exercises based on real case studies with 450 pages of documentation
- 31 CPD credits
- Certification exam included in the training fee
- Free retake within 12 months in case of failure
Certification
During the training, you will receive a coupon code allowing you to schedule your exam at the date and time of your choice. The exam is conducted online and consists of multiple-choice questions. The ISO/IEC 27001 Lead Auditor exam meets the requirements of the PECB Examination and Certification Program. It covers the following areas of competence:
- Fundamental principles and concepts of Information Security Management Systems (ISMS)
- Fundamental principles and concepts of auditing
- Preparing an ISO/IEC 27001:2022 audit
- Conducting an ISO/IEC 27001:2022 audit
- Closing an ISO/IEC 27001:2022 audit
- Managing an ISO/IEC 27001:2022 audit program
The exam is available in French and English. You will have 3 hours to complete the ISO/IEC 27001 Lead Auditor exam.
For more details on the conditions, please refer to the PECB Examination Rules and the PECB Certification Rules.
Targets
By the end of the ISO/IEC 27001 Lead Auditor training, you will be able to:
- Understand how an Information Security Management System (ISMS) operates in accordance with ISO/IEC 27001:2022
- Describe the relationship between ISO/IEC 27001:2022, ISO/IEC 27002:2022, and other related international standards
- Understand the activities of an auditor (planning, managing, and monitoring a management system audit in accordance with ISO 19011:2018)
- Lead an ISMS audit and manage an audit team
- Apply the guidelines of ISO/IEC 27001:2022 in the context of an ISMS audit
- Acquire the knowledge and skills required of an auditor
- Successfully pass the ISO/IEC 27001 Lead Auditor exam and obtain the PECB Certified ISO/IEC 27001 Lead Auditor certification
Program
Introduction Round
- Individual introductions
- Exploration of participants’ expectations and objectives
- Introduction to the training framework
- Alignment with specific goals and challenges
- Identification of participants’ expectations and perspectives
--------------------------------------------------------------------------------------------------------------------
Day 1:
- The normative, regulatory, and legal framework related to information security
- Fundamental principles of information security
- The ISO/IEC 27001:2022 Lead Auditor certification process
- Information Security Management System (ISMS)
- Detailed presentation of clauses 4 to 8 of the ISO/IEC 27001:2022 standard
Day 2:
- Concepts and fundamental principles of auditing
- Evidence-based auditing approach
- Preparing for an ISO/IEC 27001:2022 certification audit
- Document review of the ISMS
- Conducting an opening meeting
Day 3:
- Communication during an audit
- Audit procedures: observation, document review, interviews, sampling techniques, technical verification, collaboration, and evaluation
- Verification testing plans
- Formulating audit findings
- Drafting nonconformities
Days 4 & 5:
- Audit documentation
- Quality review
- Closing meeting of an ISO/IEC 27001:2022 audit
- Evaluation of corrective action plans
- Surveillance audit
- Internal audit management program
- Preparation for the ISO/IEC 27001 Lead Auditor certification exam
Note: The course materials and the PECB ISO/IEC 27001 Lead Auditor exam are available in both French and English.
Prerequisites
Attending the ISO/IEC 27001 Lead Auditor training requires the following prerequisites:
- Basic knowledge of ISO/IEC 27001, ISO/IEC 27002, and ISO 19011 standards
Public
This training is intended for the following audiences:
- Individuals who want to master the process of auditing an ISMS
- Individuals responsible for ISMS compliance
- Individuals who want to learn how to prepare an ISMS audit
- Professionals specialized in business continuity management
Strong points
- Practical exercises based on real case studies with 450 pages of documentation
- 31 CPD credits
- Certification exam included in the training fee
- Free retake within 12 months in case of failure
Certification
During the training, you will receive a coupon code allowing you to schedule your exam at the date and time of your choice. The exam is conducted online and consists of multiple-choice questions. The ISO/IEC 27001 Lead Auditor exam meets the requirements of the PECB Examination and Certification Program. It covers the following areas of competence:
- Fundamental principles and concepts of Information Security Management Systems (ISMS)
- Fundamental principles and concepts of auditing
- Preparing an ISO/IEC 27001:2022 audit
- Conducting an ISO/IEC 27001:2022 audit
- Closing an ISO/IEC 27001:2022 audit
- Managing an ISO/IEC 27001:2022 audit program
The exam is available in French and English. You will have 3 hours to complete the ISO/IEC 27001 Lead Auditor exam.
For more details on the conditions, please refer to the PECB Examination Rules and the PECB Certification Rules.
Contenu de formation proposé en partenariat avec PECB