ISO 27001 Lead Auditor Training Course

Home › ISO 27001 Training Courses › ISO 27001 Lead Auditor Training Course

DURATION

5 days

CPD

Equivalent to 40 hours

CERTIFICATES

All delegates will receive a certificate on completion.

DELIVERY OPTIONS

Course certification

Dates and Venues

A CQI and IRCA certified ISO/IEC 27001:2022 Lead Auditor training course (ref: 17293).

Overview

Auditing is an essential tool in the battle to identify, assess and address information security risks posed by challenges such as employee error and data breaches.

This CQI and IRCA certified ISO 27001 Lead Auditor training course explores how auditing an organisation’s information security management system (ISMS) helps to ensure that the system:

conforms to the organisation’s specification
meets the requirements of the ISO 27001 information security standard, with reference to ISO 19011 and ISO 17021
is effectively implemented and maintained.

Created and delivered by information security experts, the ISO 27001 Lead Auditor course equips delegates with the skills and confidence to undertake a full audit, from planning through preparing and reporting to follow up. The interactive course includes workshops and follows a central case study to help reinforce learning.

Students are assessed through continuous evaluation and an exam on the final day of the course. Successful completion will satisfy the training requirements for certification as an IRCA ISMS auditor.

Who should attend?

This 5-day course is suitable for delegates from all industries, including:

anyone who wishes to complete first, second and/or third-party ISO 27001 audits onsite and/or remotely
audit team leaders
those responsible for implementing and ensuring compliance with ISO 27001, including IT security managers, compliance consultants, cyber security consultants, information assurance professionals, QHSE managers, management systems professionals and existing auditors
those wishing to gain a recognised ISO 27001 lead auditor certificate
those seeking to apply to the CQI as an IRCA ISMS auditor

Please note that CQI and IRCA expect delegates attending this ISO 27001 Lead Auditor training course to have prior knowledge of the requirements (clauses) of ISO 27001. Some individuals may find it beneficial to attend our Introduction to ISO 27001 training course.

Click here to learn more about prior knowledge requirements.

Key topics

The topics covered in the course include:

background and overview of ISO 27001 and other information security standards (ISO 27000 Family)
ISO 27001 Annex A controls
an introduction to auditing against ISO 27001 and the auditor’s role
the role of management in reviewing risk and the effectiveness of the ISMS
planning and managing an ISMS audit:
- resources and timing
- determining the audit scope and objectives
- undertaking a risk-based approach
- ISMS documentation (risk treatment plan, SoC, SoA, information security asset record)
- use of checklists
- selection of audit teams
risk assessment and risk treatment
conducting the ISMS audit – skills, techniques and auditor competence:
- evaluating the significance of audit findings
- communicating and presenting audit reports
nonconformities and improved security as a result of corrective actions
correction and corrective action
management of the third-party assessment and certification process

Skills gained

On completion of this ISO 27001 Lead Auditor training course, delegates will be able to:

understand the role of internal and external audits in ensuring compliance of an ISMS to organisational and ISO 27001 requirements
lead an ISMS audit including:
- planning the audit using a risk-based approach to scheduling and selecting audit criteria
- conducting an ISO 27001 audit using appropriate sampling and interviewing techniques
- writing objective and factual audit reports and presenting findings
- following up and closing out an ISMS audit
contribute to the effectiveness and continual improvement of an organisation’s information security management system

Delegates must participate fully throughout the course and will be assessed by ‘continual assessment’ and by completing an exam on the final day. Students passing both aspects will receive a CQI and IRCA approved ‘Certificate of Achievement’, and will meet the training requirements for registration with IRCA as an ISMS auditor.

Select option:

Scheduled Courses In-Company Training

Upcoming course dates

Hilton Leeds City, Leeds, West Yorkshire

09 - 13 December 2024

Leeds, West YorkshireHilton Leeds City

Course Price: £1995 + VAT

View event details

20 - 24 January 2025

OnlineVirtual ClassroomLast few places!

Course Price: £1895 + VAT

View event details

24 - 28 February 2025

Royal Leamington SpaWoodland Grange

Course Price: £1995 + VAT

View event details

Macdonald Norwood Hall Hotel, Aberdeen, Scotland

10 - 14 March 2025

Aberdeen, ScotlandMacdonald Norwood Hall Hotel

Course Price: £1995 + VAT

View event details

24 - 28 March 2025

OnlineVirtual Classroom

Course Price: £1895 + VAT

View event details

28 April - 02 May 2025

Central LondonBroadway House

Course Price: £2095 + VAT

View event details

19 - 23 May 2025

OnlineVirtual Classroom

Course Price: £1895 + VAT

View event details

Worsley Park Marriott Hotel & Country Club, Manchester

23 - 27 June 2025

ManchesterWorsley Park Marriott Hotel & Country Club

Course Price: £1995 + VAT

View event details

14 - 18 July 2025

OnlineVirtual Classroom

Course Price: £1895 + VAT

View event details

Staverton Park Hotel, Daventry, Northamptonshire

18 - 22 August 2025

Daventry, NorthamptonshireStaverton Park Hotel

Course Price: £1995 + VAT

View event details

LOAD MORE DATES

In-Person
Delegate numbers	Up to 12
Total fees	£6995 + VAT

Virtual Classroom
Delegate numbers	Up to 10
Total fees	£6495 + VAT

Frequently asked questions

Will there be an exam on this course?

Yes. To pass this course you will first be assessed during training by your course tutor for participation and understanding. You will then have 30 days after the end of the course to take an online exam set by the CQI and IRCA.

The exam will present you with a mix of multiple choice, short response and other forms of question. Practice questions will be available to you to help you understand how the exam works and to check your knowledge. You will find both the exam and the practice questions on external portals, and you will be given full instructions about how to use these. Bywater will also work with you during the course to clarify what is expected of you.

This new online exam, available from March 2023, replaces the previous format of a 2-hour essay-type exam, in use until February 2023.

Is this course officially certified?

Yes, this Bywater ISO 27001 Lead Auditor training course is certified by the CQI and IRCA. That means our training course meets the required high standards for content and course delivery. Not only can you be confident of an excellent learning experience, but the certificate you receive on successful completion will reflect the quality of the expertise you have acquired.

How much do I need to know about ISO 27001 to attend this course?

As the professional body that certifies this course, the CQI and IRCA has stated that it expects delegates to already have some knowledge of the requirements of ISO 27001. This includes requirements of the standard; the Plan, Do, Check, Act (PDCA) cycle; and core elements of a management system.

We do have a short quiz that you can take to check your knowledge.

If you do not feel confident that you have sufficient knowledge, but do want to train as a lead auditor, you could first attend our Introduction to ISO 27001 training course. This course is designed to give you the knowledge you need to then attend this lead auditor course. Book both courses together and you can receive a £100 discount.

What happens if I fail the exam?

If for any reason you do not pass the exam, then you do have the opportunity to re-sit within a certain timeframe. We aim to provide you with time with the course tutor to discuss how you can improve your performance. If you find yourself needing to re-sit do contact our training team to discuss the way forward.

Back to course listing

Customer reviews

Refreshing and engaging delivery styleGreat knowledge and course delivered informally which was really refreshing. We were kept engaged throughout.

Marlowe Fire & Security Ltd|25th Oct, 2024

Gained a lot of knowledge from this trainingDavid really was a good tutor, I had no experience going into this training and I have come out knowing a lot!

Ultra Maritime Smap|23rd Oct, 2024

Excellent, knowledgeable and pragmatic tutorDavid was excellent: knowledgeable, pragmatic, quick to understand our specific situation, and keen to tailor the course appropriately.

UK Biocentre Limited|25th Sep, 2024

Very knowledgeable tutor, provided real world examplesTutor was very knowledgeable and could provide us real world examples not just things out of text books.

Global View Systems|5th Sep, 2024

Very encouraging tutorMike was extremely knowledgeable and very encouraging to me (as someone very new to ISO27001 and trying to build a system from scratch). Despite there being attendees who were much more experienced or who were slotting into systems already established,...

Netnodes Limited|31st Jul, 2024

The tutors breadth of experience added context and clarityMike was clearly very knowledgeable and experienced in all thins ISO, not just 27001, which was very useful and his experiences added context and clarity in a number of key areas.

Tribeca Technology Group|20th May, 2024

Helped me to prepare for first auditCourse has helped with understanding how I should progress our ISMS and ISO 27001 implementation, and prepare for first audit.

Enoda Ltd|3rd Apr, 2024

Extremely good tutorTutor was extremely good and made it very easy to understand the course content.

Rolls Royce|11th Mar, 2024

Great tutor – I never lost my focusThe way the tutor taught was great. He made the content very understandable with the examples and I never lost my focus.

Derivco Sports|15th Dec, 2023

Relevant, interesting and precise contentMike is a wonderful tutor, he made the content relevant, interesting and precise the whole way through.

Regulus|27th Nov, 2023

Tutor helped with my confidence a lotMike helped with my confidence a lot on the course as I was very new to ISO and others had a lot of experience.

Trusted Technology Partnership|21st Nov, 2023

Tutor kept me going the entire weekOur tutor was really engaging and fresh, he kept me going the entire week. I didn't lag once with the break every one hour and the interaction and book material to make notes in. I also like the way that...

Northrop Grumman UK Ltd|27th Sep, 2023

DURATION

CPD

CERTIFICATES

DELIVERY OPTIONS

Course certification

Upcoming course dates

In-company training availability

What's included

Next steps

Check availability and enquire

Customer reviews

You may also be interested in...

Introduction to ISO 27001 Training Course

ISO 27001 Internal Auditor Training Course

ISO 27001 Auditor Conversion Training Course