ISO/IEC 27001:2022 Information Security Management System Lead Auditor ISMS (CQI | IRCA)
Jobs related to ISMS LA 27001
ISO 27001 LEAD AUDITOR Objectives
• Understanding the purpose of an Information Security Management System and the processes involved in establishing, implementing, maintaining and continually improving an ISMS.
• Key changes in ISO 27001:2013 vs ISO 27001:2022
• Applying PDCA approach to information security management processes.
• Understanding the role and skills required by an auditor / lead auditor.
• Understanding auditing concepts and principles. Planning, conducting and reporting audits in accordance with ISO 19011.
Course Outline
1. ISMS concepts and ISO 27001 standard
• ISMS concepts and benefits
• Risk assessment and management
• ISO 27001 process framework requirements
• ISO 27001 standard requirements
• ISMS documentation2. Auditing principles
• Auditing objectives
• Types of audits
• Process approach3. Roles and responsibility of auditors
• Auditors and lead auditors
• The auditors’ responsibilities
• The lead auditors’ responsibilities
• Auditors qualification and certifications4. Planning an audit
• Pre-audit planning
• Reviewing documentation
• Developing an audit plan
• Preparing checklists or working documents
• Communication factors5. Conducting an audit
• Opening meeting
• Collecting objective/audit evidence
• Effective interviewing techniques
• Identifying and recording nonconformities
• Preparing for the closing meeting
• Do’s and Don’t’s of auditing6. Reporting audit results
• Conducting the closing meeting
• Preparing the audit report
• Distributing the audit report
7. Corrective actions
• Corrective action responsibilities
• Follow up scheduling
• Monitoring corrective action
8. ISO 27001 registration
• Choosing a registrar
• The registration process
• Surveillance audits
9. Exercises / Roleplay (50% of course time)10. Written examination
Who Should Attend
This course is specially designed for:
• Information Security Practitioners, Head – IT
• Chief Information Security Officer
• Information Security Management System Consultants
• Information Security Management System Management Representative
• Information Security Managers and core group members responsible for establishing, implementing, maintaining, auditing and improving Information Security Management Systems
• Professionals who have a role to play in the implementation of Information Security Management System
Job Roles
- overseeing an organisation’s information security compliance status.
About the Training & Exam
TÜV SÜD South Asia as an approved training partner of CQI|IRCA and fulfils all compliances of the course PR373: ISMS ISO/IEC 27001:2022 Lead Auditor holding training course reference No 2544. Participants who score 70% and above in continuous assessment, plus 50% overall in each domain in final written examination will be issued a CQI|IRCA accredited certificate of successful completion of the course, which is a renowned certification and carries worldwide acceptance. Unsuccessful candidates will be issued a certificate of attendance.
Final examination will be conducted Online by CQI|IRCA. Please find exam framework for CQI|IRCA Lead Auditor Training Course as below:
- Exam duration: 1 hour 45 minutes
- Total number of items/questions: 40
- Maximum available: 80
- Learners must achieve the minimum passing mark for each domain and an overall score of 40 marks (50%)
- Open book exam. Learners can access relevant ISO standard during exam (electronic or paper copy permitted)
How can we help?
Sample Certificate
Latest Blog Post
Protecting Jaipur’s Tourism Industry: ISO27001 Lead Auditor’s Approach
Jaipur, the Pink City, stands as a jewel in India’s...
Read More
ISO27001 Lead Auditor Certification: Elevating Pune’s IT Services Industry
Pune, often referred to as the IT hub of Maharashtra,...
Read More