Provide knowledge and skills required to perform 1st 2nd 3rd party ISMS audits against ISO/IEC 27001; in accordance with ISO 19011 and ISO 17021, as applicable.
Auditing is crucial to the success of any management system. As a result, it carries with it heavy responsibilities, tough challenges and complex problems. This five-day intensive course trains ISMS auditors to lead, plan, manage and implement an Audit Plan. It also empowers them to give practical help and information to those who are working towards certification and also provides the knowledge and skill required to carry out 2nd party auditing (suppliers and subcontractors).
Online training courses: Connected Learning Live
You can attend this training course classroom based and online. Do you prefer the convenience of an online training course? View here for the available dates or read more about Connected Learning Live.
Lees deze pagina in het Nederlands en bekijk beschikbare data van de Nederlandstalige trainingen
ISO/IEC 27001:2022 learning path and combination discount
The ISO/IEC 27001:2022 Lead Auditor learning path is modular.You can follow the training in all combinations. We recommend the following order:
Besides this lead auditor course, are the following training courses also part of the ISO 27001 learning path:
1. Requirements
4. CQI/IRCA Lead auditor
Attending several training courses of a learning path is associated with special discounts.
Training |
Combination training 1 + 2 |
Combination training 1 + 3 |
Combination training 1 + 4 |
Combination training 1 + 2 + 3 |
Combination training 1 + 2 + 3 + 4 |
In-house training course
If more employees need to understand, implement, audit, your management system, training can be delivered at your location. Based on your learning needs we could provide a customized in-house training course for your team.
For more information about the learning path or in-house training courses, please contact Training via +31 020 346 0780 or send an email to training.nl@bsigroup.com
Who should attend?
This course is suitable for those wishing to Lead audits of ISMS in accordance with ISO 27001:2022 (either as a 2nd party, or 3rd party auditor), those wishing to learn about effective audit practices. Security and quality professionals, existing information security auditors who wish to expand their auditing skills and consultants who wish to provide advice on ISO 27001:2022 ISMS Auditing.
Prerequisites:
Delegates are expected to have the following prior knowledge:
Management systems
Understand the Plan-Do-Check-Act (PDCA) cycle.
Information security management (Knowledge of the following information security management principles and concepts):
- Awareness of the need for information security
- The assignment of responsibility for information security
- Incorporating management commitment and the interests of stakeholders
- Enhancing societal values
- Using the results of risk assessments to determine appropriate controls to reach acceptable levels of risk
- Incorporating security as an essential element of information networks and systems
- The active prevention and detection of information security incidents
- Ensuring a comprehensive approach to information security management
- Continual reassessment of information security and making of modifications as appropriate
ISO/IEC 27001
Knowledge of the requirements of ISO 27001:2022 Requirements course and the commonly used information security management terms and definitions, as given in ISO/IEC 27000.
Delegates will be able to:
Explain the purpose and business benefits of:
- Information Security Management Systems (ISMS), ISMS standards
- Management system audit
- Third-party certification
Explain the role of an auditor to plan, conduct, report and follow up an Information Security MS audit in accordance with ISO 19011 (and ISO 17021 where appropriate).
Have the skills to: Plan, conduct, report, and follow up an audit of an ISMS to establish conformity (or otherwise) with ISO/IEC 27001/2, ISO 19011 (and ISO 17021 where appropriate)
Practical information
- The Lead Auditor is an intensive training course and will be completed by an official BSI exam
- It's a 5-day course
- The training and materials will be provided in English
- The standard ISO 27001:2022 and ISO 19011:2018 aren’t into the training price included. However, during the training course, a loan copy of the standards will be available
- Lunch and drinks are included
- There is a requirement for delegates to undertake some evening preparation or assignments on days 1-4 (Approximately 2-3 hours)
For further information regarding reduced rates at the hotel where the training is being conducted, please contact training.nl@bsigroup.com or call +31-(0)20 346 0780