ISO/IEC 27001:2022 Information Security Management System Lead Auditor ISMS (CQI | IRCA)
Jobs related to ISMS LA 27001
ISO 27001 LEAD AUDITOR Objectives
• Understanding the purpose of an Information Security Management System and the processes involved in establishing, implementing, maintaining and continually improving an ISMS.
• Key changes in ISO 27001:2013 vs ISO 27001:2022
• Applying PDCA approach to information security management processes.
• Understanding the role and skills required by an auditor / lead auditor.
• Understanding auditing concepts and principles. Planning, conducting and reporting audits in accordance with ISO 19011.
Course Outline
1. ISMS concepts and ISO 27001 standard
• ISMS concepts and benefits
• Risk assessment and management
• ISO 27001 process framework requirements
• ISO 27001 standard requirements
• ISMS documentation2. Auditing principles
• Auditing objectives
• Types of audits
• Process approach3. Roles and responsibility of auditors
• Auditors and lead auditors
• The auditors’ responsibilities
• The lead auditors’ responsibilities
• Auditors qualification and certifications4. Planning an audit
• Pre-audit planning
• Reviewing documentation
• Developing an audit plan
• Preparing checklists or working documents
• Communication factors5. Conducting an audit
• Opening meeting
• Collecting objective/audit evidence
• Effective interviewing techniques
• Identifying and recording nonconformities
• Preparing for the closing meeting
• Do’s and Don’t’s of auditing6. Reporting audit results
• Conducting the closing meeting
• Preparing the audit report
• Distributing the audit report
7. Corrective actions
• Corrective action responsibilities
• Follow up scheduling
• Monitoring corrective action
8. ISO 27001 registration
• Choosing a registrar
• The registration process
• Surveillance audits
9. Exercises / Roleplay (50% of course time)10. Written examination
Who Should Attend
This course is specially designed for:
• Information Security Practitioners, Head – IT
• Chief Information Security Officer
• Information Security Management System Consultants
• Information Security Management System Management Representative
• Information Security Managers and core group members responsible for establishing, implementing, maintaining, auditing and improving Information Security Management Systems
• Professionals who have a role to play in the implementation of Information Security Management System
Job Roles
- overseeing an organisation’s information security compliance status.
About the Training & Exam
TÜV SÜD South Asia as an approved training partner of CQI|IRCA and fulfils all compliances of the course PR373: ISMS ISO/IEC 27001:2022 Lead Auditor holding training course reference No 2544. Participants who score 70% and above in continuous assessment, plus 50% overall in each domain in final written examination will be issued a CQI|IRCA accredited certificate of successful completion of the course, which is a renowned certification and carries worldwide acceptance. Unsuccessful candidates will be issued a certificate of attendance.
Final examination will be conducted Online by CQI|IRCA. Please find exam framework for CQI|IRCA Lead Auditor Training Course as below:
- Exam duration: 1 hour 45 minutes
- Total number of items/questions: 40
- Maximum available: 80
- Learners must achieve the minimum passing mark for each domain and an overall score of 40 marks (50%)
- Open book exam. Learners can access relevant ISO standard during exam (electronic or paper copy permitted)
How can we help?
Sample Certificate
Latest Blog Post
ISO27001 Lead Auditor: Strengthening Cybersecurity in Indore’s E-commerce Boom
The e-commerce industry in Indore is experiencing an unprecedented boom,...
Read More
Enhancing Information Security in Nagpur’s Mining Sector with ISO27001
Introduction The mining sector in ISO27001 Lead Auditor Nagpur plays...
Read More