Home - Course Catalogue - Security > ISOLA-ISO 27001 ISMS Lead Auditor

Microsoft Administration Microsoft Development Cisco ITIL® VMware Cloud Computing Risk & Audit VMware vSphere & Cloud Based Services Business Analysis Project Management CompTIA Java and Programming Security COBIT TOGAF Storage Area Networking Business Skills for IT Novell SAP UNIX

60% Off SCCM 2012, Hyper-V, & SQL 2012 Training The Microsoft Virtualization Challenge Register Online & Save Up To 15% Instantly Volume Pricing - Corporate Training Volume Pricing - Individual Training 25% Off for Microsoft Partners Microsoft Software Assurance

Talk to an Educational Consultant and get the answers you need.

By Phone
Ottawa: 613-798-5353
Toronto: 416-284-2700
Toll Free: 866-635-5353

Ask your question online

ISOLA - ISO 27001 ISMS Lead Auditor

Summary

ISO 27001 Lead Auditor Training Leading Provider of IT Security Awareness, Training and Certification in the Ottawa/Gatineau Community. Thanks to Global Partners, C3SA and CTE Solutions are able to bring you Exciting, Leading-edge Certification Tracks that are Highly In-demand within the Information Security and Compliance Field. This five-day intensive course that includes optional exam on the final afternoon enables participants to develop the expertise needed to audit an Information Security Management System (ISO 27001) and to manage a team of auditors by applying widely recognized audit principles, procedures and techniques. During the training, the participant will acquire the knowledge needed to plan and perform audits compliant with the certification process of standard 27001:2005. Based on practical exercises, the participant will be able to develop the abilities (mastering audit techniques) and skills (managing audit teams and audit program, communicating with customers, conflict resolution, etc.) necessary to the conduct of an audit.

The training is based on management system audit guidelines (ISO 19011:2002) as well as international audit best practices: the International Federation of Accountants (IFAC), the American Institute of Certified Public Accountants (AICPA), the Information Systems Audit and Control Association (ISACA) and the Institute of Internal Auditor (IIA). An audit kit developed by experienced auditors will be distributed to participants.

Learning objectives:

Understanding the application of the information security management system in the ISO 2701:2005 context.
Understanding the relationship between the information security management system, including the management of risks and controls, and the various stakeholders.
Understanding audit principles, procedures and techniques, and being able to apply them in an ISO 27001 audit framework
Understanding the legal, statutory, regulatory or contract obligations relevant during an ISMS audit
Acquiring the personal skills required to perform an audit in an effective and cost-effective manner, and managing an audit team
Preparing and completing an audit report ISO 27001
Understanding the application of the information security management system in the ISO 2701:2005 context.

Who should participate?

Person wanting to lead ISO 27001 certification audits as the person in charge of an audit team
Consultant wanting to prepare and support a company in an audit certification ISO 27001
Internal advisor to a company or internal auditor who wants to prepare and support his company in a certification audit ISO 27001
Person in charge of information security or conformity internally for the organization
Expert advisor in information technology

Prerequisites:

Basic knowledge of ISO 27001 and ISO 27002 standards is recommended.

Course details:

Day 1: Introduction to the management of an Information Security Management

System based on ISO 27001
Course objectives and structure
Normative and regulatory framework \
ISO 27001 certification process
Fundamental principles in Information Security and Risk Management
Information Security Management System (ISMS)
Introduction to clauses 4 to 8 (ISO 27001)

Day 2: Launching an ISO 27001 audit

Fundamental concepts and principles in audit
Ethics and professional rules of conduct in audit
Audit approach based on evidence and on risk
Preparation of an ISO 27001 certification audit
Documentation audit
Preparing the audit plan
Conducting an opening meeting

Day 3: Conducting an ISO 27001 audit

Communication during the audit
Audit procedures (observation, interview, sampling techniques)
Drafting audit findings and nonconformity reports

Day 4: Closing an ISO 27001 audit

Audit documentation
Review of audit notes
Closing an ISO 27001 audit
Managing an audit program ISO 27001
Competence and evaluation of auditors
Completion of training

Day 5: Review and Examination

Review
Examination

Examination and Certification

The “ISO/IEC 27001:2005 Lead Auditor” exam is certified by the Professional Evaluation and Certification Board (PECB). See www.pecb.org.
The “ISO/IEC 27001:2005 Lead auditor” exam is available in different languages (including English and French)
Duration of the exam: 3 hours
A certificate will be issued to participants who successfully complete the exam
After successfully completing the exam, the participant can apply for the title of ISO/IEC 27001:2005 - ISMS Provisional Auditor, ISO/IEC 27001:2005 - ISMS Auditor or ISO/IEC 27001:2005 - ISMS Lead Auditor depending on their experience

General Information

An ISMS implementation toolkit as well as a student manual containing over 400 pages of information and practical examples will be distributed to participants
A 35 CPE (Continuing Professional Education) participation certificate will be issued to participants