ISO 27001:2013 - Certified Lead Auditor

ISO 27001:2013 - Certified Lead Auditor

Course Preview
Watch Preview

Certification Overview

The ISO 27001 : 2013 Certified Lead Auditor covers the ISO 27001 : 2013 standard and the information security controls in detail. The Lead Auditor Certification is intended for professionals who would like to establish their career as lead auditors for ISO 27001 and for information security professionals who would like to implement ISMS. The ISO 27001 : 2013 Lead Auditor Certification demonstrates that an individual has a substantial experience in leading an audit.

What is the difference between the Lead Implementer & Lead Auditor certification?

  • Lead Implementer Certification enables participants to develop an expertise to support an organization in implementing and managing a Management System based on ISO.
  • Lead Auditor certification enables participants to develop the expertise needed to audit a Management System and to manage a team of auditors by applying widely recognized audit principles, procedures and techniques.

e-Competence Framework (e-CF)

The mapping of this certificate against the e-Competence Framework. To know more on e-Competence Framework (e-CF) visit, ECF

e-CF Mapping

Exam Code: ISO27-13-001

Exam Information

The exam comprises of 50 Multiple Choice Questions out of which the candidate needs to score 70% (35 out of 50 correct) to pass the exam.

The total duration of the exam is 1 hour (60 Minutes).

  • The exam is delivered through ProctorU in a proctored mode. With a webcam and a reliable internet connection, exam can be taken anytime and anywhere.
  • Upon purchasing the Premium Package or an Exam Voucher Code, a voucher code with two attempts will be assigned to your login profile.

  • The Exam Voucher included in the Premium Package or purchased separately is valid for two (2) attempts. If you are unable to pass the exam within these two attempts, you can purchase a new voucher code, which will grant you an additional two attempts.

The ISO 27001 : 2013 - Certified Lead Auditor Certificate is valid for life.

Displaying your certificate

  • Remember, when labelling a product or system as certified to an ISO standard:
  • Don't say: "ISO certified" or "ISO certification"
  • DO say: "ISO 9001:2008 certified" or "ISO 9001:2008 certification" (for example).

N/A

The ISO 27001 : 2013 - Certified Lead Auditor Level Certification has no pre-requisites.

Download Sample Exam

Course Outline

Module 1 - Information Security

  • The Importance of Being Informed
  • Globally Connected
  • More Ado About Risks
  • Decoding the Secret of Information Security Management
  • Management and Awareness
  • Legislation, Regulation and Governance

Module 2 - Information Security 27001 Standards

  • ISO/IEC Standardisation
  • Overview
  • Evolution of the ISO/IEC 27000
  • The Weakest Link
  • Overview of ISO/IEC 27001: 2013
  • ISMS Audience
  • Processes
  • ISMS Stages

Module 3 - ISMS Business Context

  • Organisational Context
  • Needs and Expectations
  • ISMS Scope
  • Interested Parties
  • Requirements Relevant to the ISMS
  • Gathering Requirements Relevant to the ISMS

Module 4 - ISMS Scope

  • ISMS Scope
  • What to Consider and What to Include
  • Object of ISMS Scope
  • Defining the ISMS Scope
  • Scope Example
  • External and Internal Connections

Module 5 - ISMS Risks

  • The Importance of Risk and Opportunity
  • Risk Management Process
  • Ongoing Reassessment of Risk

Module 6 - ISMS Leadership and Support

  • Management Policy
  • Leadership
  • Roles and Responsibilities
  • Resources
  • Awareness

Module 7 - Controls to Modify the Risks

  • Determining the Controls
  • System of Controls
  • Policies and Procedures
  • Sector-Specific Controls

Module 8 - ISMS Operations

  • Operational ISMS Procedures
  • Ongoing Risks Management
  • Operational Threats
  • Operational Processes
  • Incident Management
  • ISMS Availability and Business Continuity

Module 9 - Performance Evaluation

  • Performance, Change and Improvement
  • Monitoring and Operational Reviews
  • ISMS Measurements Programme
  • Ongoing Risk Management
  • ISMS Audits
  • Management Reviews of the ISMS
  • Awareness and Communications

Module 10 - Improvements to the ISMS

  • Continual Improvement
  • Conformance and Nonconformance
  • Making Improvements

Module 11 - Auditing

  • Audit Process
  • Nonconformities
  • Audit Report
  • Surveillance Audits
  • Recertification
  • Audit Trails
  • Competence
Download Brochure

Target Audience

Designed for people who wish to conduct external audits on behalf of assessment bodies for ISO 27001 certification, but also suitable for those who need to conduct thorough internal audits on behalf of their own organization. It is recommended that delegates have a working knowledge of the requirements of the applicable standard to which the course is being delivered.