ISO - ISO 27001 Lead Auditor - Information Security Management System

The ISO 27001 Lead Auditor course is a PECB (Professional Evaluation and Certification Board) official course. The three-day intensive course will help you develop the skills needed to audit an Information Security Management System (ISMS). You'll also be able to manage a team of auditors, by applying widely-recognised audit principles, procedures and techniques.

PECB is officially accredited under ISO 17024 from ANSI. They are the first personnel certification body to be accredited by a National Accreditation Authority.

You will gain the skills and knowledge needed to plan and perform audits, compliant with the certification process of the ISO/IEC 27001:2022 standard. Through practical exercises, you will learn the following skills:

• Mastering audit techniques
• Managing audit teams and audit program
• Communicating with customers
• Conflict resolution

As of March 2023, PECB have partnered with Credly to offer you the chance of earning a digital badge upon completing your certification.

In addition, you will also get one year free PECB membership (Professional Evaluation and Certification Board) – which usually costs around £250 and be able to apply for the following titles depending on your experience:

• Certified ISO/IEC 27001 Provisional Auditor
• Certified ISO/IEC 27001 Auditor
• Certified ISO/IEC 27001 Lead Auditor
• Certified ISO/IEC 27001 Senior Lead Auditor
• PECB Master Certification

More information on these credentials and what is required to achieve them can be found in the prerequisites section below.

If you need more information, please call us on 080 80 800 888 and we'll help you through the process.

Residential or Online ISO 27001 Lead Auditor course?

Firebrand offers both a classroom-based and ISO 27001 Lead Auditor online course, including everything you need to get certified in record time:

• Official courseware, labs and practice exams
• ISO 27001 Lead Auditor certification exam
• Accommodation, meals, and snacks (for residential courses)

Both are delivered through our tried and tested Lecture | Lab | Review methodology. Firebrand accelerated methodology offers you the opportunity to choose the best delivery option for your needs and get your certification faster than anywhere else.

The ISO 27001 Lead Auditor certification proves that you can conduct process-based audits against ISO 27001, for clients worldwide.

During this course, you will learn:

Normative, regulatory and legal frameworks related to information security

• Fundamental Principles of Information Security
• ISO 27001 certification
• Information Security Management System
• Detailed presentation of clauses 4-8 of ISO27001

Initiating and Planning an ISO 27001 audit

• Fundamental auditing concepts and principles
• Audit approach based on evidence and on risk
• Preparation of an ISO 27001 certification audit
• ISMS documentation audit
• Conducting an opening meeting

Performing an ISO 27001 audit

• Communication during the audit
• Audit procedures: observation, document review, interview, sampling, technical control, confirmation and evaluation
• Audit test plans
• Formulation of control findings
• Documenting deviations

Concluding and ensuring follow-up of an ISO 27001 audit

• Audit documentation
• Quality rating
• Conducting a closing meeting and the conclusion of an ISO 27001 audit
• Evaluation of corrective action plans
• ISO 27001 surveillance audit
• Internal audit management program

You'll take the PECB Certified ISO 27001 Lead Auditor exam as part of the course. The exam is 3 hours long and covers the following domains:

• Domain 1: Fundamental principles and concepts of Information Security Management System (ISMS)
• Domain 2: Information Security Management System (ISMS)
• Domain 3: Fundamental audit concepts and principles
• Domain 4: Preparation of an ISO/IEC 27001 audit
• Domain 5: Conducting an ISO/IEC 27001 audit
• Domain 6: Closing an ISO/IEC 27001 audit
• Domain 7: Managing an ISO/IEC 27001 audit program

On this all-inclusive accelerated course you'll receive:

• The Information Security Management System (ISMS) implementation methodology
• Student manual - containing over 400 pages of information and practical examples
• Certificate - worth 31 CPE (Continuing Professional Education) credits

When you successfully pass the ISO 27001 Lead Auditor exam, you will get the first year of PECB membership free of charge. The usual fee for this is around £250. This applies to all courses which lead to a professional certification. PECB are a personnel certification body.

It is recommended that you have already attended Information Security Management System (ISMS) Foundation training, or have a basic knowledge of ISO/IEC 27001:2022 and ISO/IEC 27002:2022.

Once this course is complete, you will be able to apply for your ISO 27001 Lead Auditor certification. In order to become certified, you must pass your exam and adhere to the PECB Code of Ethics. Your credential level will depend on your professional experience. Please see below table which highlights the different credentials available, and the pre-requisites required for each stage.

Do you qualify for the ISO 27001 Master certification?

The ISO 27001 Master certification allows you to prove that you have mastered the implementation of an Information Security Management System (ISMS). You can apply for the Master certification through PECB, if you have the following:

• Both ISO 27001 Lead Auditor certification and ISO 27001 Lead Implementer certification
• 4 additional foundation exams relevent to the certification (ISO 27005, 27002, 27032 and 27035)
• 15 years of professional experience with at least 10 years of work experience information security
• 700 hours of ISMS audit experience and 700 hours of ISMS project experience

Unsure whether you meet the prerequisites? Don’t worry. Your training consultant will discuss your background with you to understand if this course is right for you.