ISO/IEC 27001 Lead Auditor for Information Security

Overview

This course will help you master Information Security Management System (ISMS) auditing and the requirements of ISO/IEC 27001:

2022, equipping you with essential skills to advance your career in the rapidly growing field of information security.

Syllabus

• Introduction to ISO/IEC 27001
Overview of Information Security Management Systems (ISMS)
Importance of ISO/IEC 27001:2022 for organizations
• Understanding the ISO/IEC 27001:2022 Standard
Structure and Clauses of ISO/IEC 27001:2022
Key changes from previous versions
Annex A Controls
• Fundamentals of Information Security Management Systems (ISMS)
Objectives and benefits of ISMS
Key concepts and principles
Role in organizational risk management
• Preparing for ISO/IEC 27001 Audit
Planning the audit
Defining audit objectives, scope, and criteria
Creating an audit plan
• Audit Process
Conducting document review
Interview techniques
Audit testing and evidence-gathering methods
• Audit Roles and Responsibilities
Roles of Lead Auditor, Auditors, and Auditee
Team selection and management
Conducting opening and closing meetings
• Nonconformity Identification and Reporting
Identifying and classifying nonconformities
Writing effective nonconformity statements
Preparing audit reports
• Corrective Action and Follow-up
Corrective action planning and verification
Follow-up audit activities
• Continuous Improvement of ISMS
PDCA cycle (Plan-Do-Check-Act)
Driving continual improvement in ISMS
• Certification Process
Steps to achieve ISO/IEC 27001 certification
Maintaining and renewing certification
• Case Studies and Practical Exercises
Real-world ISMS audit scenarios
Practice audit exercises
• Final Assessment and Certification
Knowledge checks and quizzes
Lead Auditor certification exam
• Conclusion and Career Advancement
Review of key learning points
Career insights and opportunities in information security

---

Taught by

Cristian Vlad Lupa, rigcert.education

---

Subjects

Business