/ Trainings / ISMS Lead Auditor

ISO/IEC 27001 Lead Auditor

  • Training Program

About Course

The TRECCERT ISO/IEC 27001 Lead Auditor training course prepares participants to master the principles and practices of auditing an ISMS based on the ISO/IEC 27001:2022 and ISO 19011 standards. This advanced course provides a structured approach to planning, conducting, and reporting audits while emphasizing compliance and continuous improvement.

Participants will develop key auditing competencies, including identifying non-conformities, assessing Annex A controls, and ensuring alignment with ISO requirements.

What Makes This Course Unique?

  • Advanced insights into the auditing process, from initiation to follow-up.
  • Focus on auditor competencies, ethical practices, and conflict management.
  • Comprehensive training on evaluating ISMS compliance and effectiveness.

This course is tailored for internal and external auditors, compliance professionals, and individuals leading ISMS audit initiatives.

Show more Show less

Audience

The ISO/IEC 27001 Lead Auditor training course is developed for individuals responsible for the audit and maintenance of an ISMS, for example:
  • CISO, CTO
  • Information Security Managers, IT Security Consultants, and Internal Auditors
  • Cybersecurity Specialist, Security Analysts
  • Business Continuity Managers and Regulatory Compliance Specialist

Course Details

  • Expert
  • 40 Hours Duration
  • Language: English
  • Delivery: Classroom and Online
  • CPE: 40 Credits

Included Materials

  • 500 Training Slides
  • Quiz Questions
  • Exercises
Contact for Details
Get Certified

What Will You Learn?

  • Know and understand information security, including principles, fundamental concepts, and standards, best practices and laws/regulations.
  • Know and understand ISO/IEC 27001 requirements and controls, and describe their function and operation.
  • Know and understand ISO/IEC 27001 – Annex A controls, and describe their purposes and auditing methods.
  • Know, understand and be able to participate in ISMS auditing projects and related activities.
  • Know, understand and be able to audit ISMS projects and related activities.

Course Content

Introduction to ISMS
  • Introduction to Information Security
  • ISMS Overview
  • IS Standards and Best Practices
ISMS Requirements
  • Context of the Organization
  • Leadership
  • Planning
  • Support
  • Operation
  • Performance Evaluation
  • Improvement
Organizational and People Controls*
  • Information Security Policies and Management
  • Asset Management and Access Control
  • Supplier Relationships and Incident Management
  • Legal and Compliance
  • Human Resource Security
Physical and Technological Controls*
  • Physical Security
  • Technical Security
  • Network Security
  • Application Security
Introduction to Audit
  • MS Audit and Audit Types
  • Audit Principles
  • Auditor Competence and Evaluation
  • Code of Ethics and Conflict of Interest
Managing an Audit Programme
  • Creating an Audit Programme
  • Establishing Audit Programme
  • Audit Programme Implementation
  • Audit Programme Monitoring and Reviewing
Conducting an ISMS Audit
  • Initiation of Audit
  • Audit Planning
  • Audit Execution
  • Audit Report
  • Follow-Up Auditing

*Disclaimer: The training course covers all 93 new Annex A controls; however, for design and presentation purposes, we have categorized and condensed the content to ensure a comprehensive overview.

Course Details

  • Expert
  • 40 Hours Duration
  • Language: English
  • Delivery: Classroom and Online
  • CPE: 40 Credits
Contact for Details
Get Certified

Included Materials

  • 500 Training Slides
  • Quiz Questions
  • Exercises