ISO 27001:2022 Lead Auditor Training
Fundamental concepts and principles of information security, including confidentiality, integrity, and availability.
The principles, critical success factors, and benefits of implementing an effective Information Security Management System (ISMS).
A thorough understanding and interpretation of the requirements of the ISO 27001:2022 standard on a clause-by-clause basis, together with the Annex A controls and the Statement of Applicability (SoA).
The principles of information security risk management, including risk assessment, risk treatment, and the maintenance of a Risk Register.
The principles, processes, and management of auditing in accordance with ISO 19011 and the requirements of ISO/IEC 17021-1 for third-party certification.
The roles, responsibilities, and competencies of an audit team leader, including the management of an audit team and the application of audit psychology, questioning techniques, and objectivity.
The knowledge and skills required to plan, prepare, and initiate an audit, including reviewing documented information, preparing an audit plan, and developing audit checklists and working documents.
The conduct of an audit, including opening meetings, collecting and verifying objective evidence, evaluating conformity, and documenting audit findings.
The grading, raising, and reporting of non-conformities, the preparation of the audit report, and the conduct of closing meetings.
The evaluation of corrective action, audit follow-up, continual improvement, and the certification and accreditation processes.
