Back to Courses
ISO 27001

ISO 27001:2022 Lead Auditor Training

  • Fundamental concepts and principles of information security, including confidentiality, integrity, and availability.

  • The principles, critical success factors, and benefits of implementing an effective Information Security Management System (ISMS).

  • A thorough understanding and interpretation of the requirements of the ISO 27001:2022 standard on a clause-by-clause basis, together with the Annex A controls and the Statement of Applicability (SoA).

  • The principles of information security risk management, including risk assessment, risk treatment, and the maintenance of a Risk Register.

  • The principles, processes, and management of auditing in accordance with ISO 19011 and the requirements of ISO/IEC 17021-1 for third-party certification.

  • The roles, responsibilities, and competencies of an audit team leader, including the management of an audit team and the application of audit psychology, questioning techniques, and objectivity.

  • The knowledge and skills required to plan, prepare, and initiate an audit, including reviewing documented information, preparing an audit plan, and developing audit checklists and working documents.

  • The conduct of an audit, including opening meetings, collecting and verifying objective evidence, evaluating conformity, and documenting audit findings.

  • The grading, raising, and reporting of non-conformities, the preparation of the audit report, and the conduct of closing meetings.

  • The evaluation of corrective action, audit follow-up, continual improvement, and the certification and accreditation processes.

25 lessons
40h estimated
Certificate included
ISO 27001:2022 Lead Auditor Training