| Fee | £1495 |
|---|---|
| Days | 5 |
| Code | ISOLA |
| May | |
|---|---|
| Jun | |
| Jul | |
| Aug | |
| Sep | 3 |
| Oct |
Click on a course date to book
e-mail us
or call us on
0845 650 6500
ISO 27001 Lead Auditor
The ISO 27001 Lead Auditor training course is available at our Cardiff training centre in Wales, which is also within easy reach of Newport, Bristol and South Wales
Overview
This five-day intensive course enables participants to develop
their expertise needed to audit an Information Security Management
System (ISMS) and to manage a team of auditors by applying widely
recognised audit principles, procedures and techniques.
During this training, the participant will acquire the skills and
knowledge needed to proficiently plan and perform audits compliant
with the certification process of the ISO/IEC 27001:2005 standard.
Based on practical exercises, the participant will develop the
abilities (mastering audit techniques) and skills (managing audit
teams and audit program, communicating with customers, conflict
resolution, etc.) necessary to the efficient conducting of an
audit.
Audience
- Auditor wanting to perform and lead an Information Security Management System (ISMS) audits as the responsible of an audit team
- Project manager or consultant wanting to master the Information Security Management System audit process
- Person responsible for the Information Security or conformity in an organisation
- Member of the Information Security team
- Expert advisor in Information technology
- Technical expert wanting to prepare for an Information Security audit function
Course Outline
Day 1: Introduction to the management of an Information Security Management System (ISMS)
- Normative, regulatory and legal framework related to Information Security
- Fundamental principles of Information Security
- The ISO/IEC 27001:2005 certification process
- The Information Security Management System (ISMS)
- Detailed presentation of the clauses 4 to 8 of the ISO/IEC 27001:2005 standard
Day 2: Planning and Launching an ISO 27001 audit
- Fundamental concepts and principles of auditing
- Audit approach based on evidence and on risk
- Preparation of an ISO/IEC 27001:2005 certification audit
- Documentation of an ISMS audit
- Conducting an opening meeting
Day 3: Conducting an ISO 27001 audit
- Communication during the audit
- Audit procedures: observation, document review, interview, sampling techniques, technical verification, corroboration and evaluation
- Drafting test plans
- Formulation of audit findings
- Drafting of nonconformity reports
Day 4: Concluding and ensuring the follow-up of an ISO 27001 audit
- Audit documentation
- Quality Review
- Conducting a closing meeting and Conclusion of an ISO/IEC 27001:2005 audit
- Evaluation of corrective action plans
- Surveillance Audit
- Audit management program
Day 5: Exam
Prerequisites
ISMS Foundation Training or a basic knowledge of ISO/IEC 27001:2005 and ISO/IEC 27002:2005 is recommended.
Examination and certification
- The "ISO/IEC 27001:2005 Lead auditor" exam is available in different languages (including English and French)
- Duration of the exam: 3 hours
- A certificate will be issued to participants who successfully complete the exam
- After successfully completing the exam, the participant can apply for the title of ISO/IEC 27001:2005 - ISMS Provisional Auditor, ISO/IEC 27001:2005 - ISMS Auditor or ISO/IEC 27001:2005 - ISMS Lead Auditor depending on their experience
Quick link to this course: www.e-academy.ltd.uk/isola
