ISO 27001:2013 Lead Auditor Course on Information Security Management System (ISMS) Course

Hours: 40

Intertek’s CQI-IRCA Accredited ISO 27001:2013 Lead Auditor Course aims to provide training for potential Information Security Management System (ISMS) Lead Auditors and Auditors. The course meets the training requirements of the International Register of Certificated Auditors for registration as a CQI-IRCA recognized ISMS auditor/lead auditor and provides delegates with an in-depth knowledge and skills in auditing in order to carry out information security management system audits.

On completion of this course you will be able to:

• Explain the purpose of an information security management system (ISMS) and explain the processes involved in establishing, implementing, operating, monitoring, reviewing and improving an ISMS as defined in ISO 27001, including the significance of these for ISMS auditors;
• Explain the purpose, content and interrelationship of ISO 27001:2013, ISO 27001:2013 and ISO/IEC 27005:2008 and ISO/IEC 27035:2011, EA 7/03 and the legislative framework relevant to an ISMS;
• Explain the role of an auditor to plan, conduct, report and follow up an ISMS audit in accordance with ISO 19011
• Interpret the requirements of ISO 27001:2013, and EA 7/03 in the context of an ISMS audit;
• Undertake the role of an auditor to plan, conduct, report and follow up an audit in accordance with ISO 19011 

TOPICS COVERED IN THE COURSE

• Process approach
• Standards, principles & definitions
• Accreditation, certification and types of audit
• Risk assessment methodology
• ISO 27001:2013 requirements and their practical implementation in the organization’s activities
• Review of ISO 27001:2013 guidelines
• Applicable legislation
• Techniques for carrying out audits
• Plan, conduct and report an audit
• Techniques for continual improvement