Training:
ISO 27001: 2022 Information Security Management System Lead Auditor Training
Training Objective:
Information Security Management Systems are developed to provide knowledge and skills for second-party and third-party auditors and to train chief auditors. This training is organized with the aim of providing both qualification and knowledge and skills for secondary industry and certification auditors. The training provides the participants with the knowledge and skills necessary for effective supervision in an interactive environment. With this training you will have taken the first step in your career in auditing and chief auditing. All certification bodies treat this training as a prerequisite for the appointment of auditors and chief auditors. Beyond that, the most important factor is that you will be able to control yourself after the training you have attended, and that you will have the knowledge and skills to provide it.
Target Group:
Middle and senior employees, anyone interested in the information security can participate in this training.
Accreditation:
Exemplar Global (RABQSA)
Training Time:
40 hours (5 days)
Training Content:
1st and 2nd Day: AU Module – “Management Systems Audit”
History of Environment and Management Systems
Continuous improvement
ISO 9001 and ISO 27001 standards
Control Processes
Communication skills
The Role and Responsibilities of the Auditor
Question Development
ISO 19011
Audit Plans and Document Auditing
Audit Reports and Corrective Actions
Auditor techniques
Process-based audit and sampling
3rd and 4th Day: EM Module – “Information Security Management Systems Audit”
ISMS & documentation
Information security systems control
Initial perimeter retirement
Information security Management principles
Detailed explanations of ISO 27001
Process-based audit
Day 5: TM Module – “Management of System Auditing Teams”
Certification process
Auditor skills and competencies
Inspector code
Legal / ethical aspects of audit
Accreditation & Certification agencies
Detailed explanations of ISO 27001
Objective Evidence
Industry Codes
Audit Codes