PECB ISO/IEC 27001:2022 Lead Auditor
Categories: ISO
Course Information
The PECB ISO/IEC 27001 Lead Auditor eLearning (English) training course is designed to prepare you to audit an Information Security Management System (ISMS).
This training course combines the requirements of ISO/IEC 17021-1, the recommendations of ISO 19011, and other good practices of auditing and integrates them into a comprehensive methodology which enables you to successfully plan, conduct, and close external and internal conformity assessment audits.
What is ISO/IEC 27001?
ISO/IEC 27001 provides requirements for organizations seeking to establish, implement, maintain and continually improve an ISMS that preserves the confidentiality, integrity, and availability of information by applying a risk management process.
This framework serves as a guideline towards continually reviewing the safety of your information, which will exemplify reliability and add value to the services of your organization.
The following PECB references are available:
Why Should You Attend?
In this training course, you will acquire the knowledge and skills to plan and carry out internal and external audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.
Apart from showcasing what the ISO/IEC 27001 standard tells you to do, this training course tells you how to do it, through various activities, exercises, case studies, multiple-choice standalone quizzes, and scenario-based quizzes.
The training course is followed by a certification exam. After successfully passing the exam, you may apply for a “PECB Certified ISO/IEC 27001 Lead Auditor” certification which is UKAS accredited and internationally recognized. The certification validates your competence to audit an ISMS based on the requirements of ISO/IEC 27001.
Educational approach
- This training course contains essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS.
- The participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
- The exercises are based on a case study.
- The structure of the quizzes is similar to that of the certification exam.
Prerequisites
The main requirement for participating in this training course is having a general knowledge of the ISMS concepts and ISO/IEC 27001.
Examination
The “PECB Certified ISO/IEC 27001 Lead Auditor” exam fully meets the requirements of the PECB Examination and Certification Program (ECP) and covers the following competency domains:
- Domain 1: Fundamental principles and concepts of ISMS
- Domain 2: ISMS requirements
- Domain 3: Fundamental audit concepts and principles
- Domain 4: Preparation of an ISO/IEC 27001 audit
- Domain 5: Conducting an ISO/IEC 27001 audit
- Domain 6: Closing an ISO/IEC 27001 audit
- Domain 7: Managing an ISO/IEC 27001 audit program
For specific information about exam type, languages available, and other details, please visit the List of PECB Exams and the Examination Rules and Policies.
Certification
After successfully completing the exam, you can apply for the credentials shown on the table below:
Credential | Exam | Professional experience | MS audit/assessment experience | Other requirements |
PECB Certified ISO/IEC 27001 Provisional Auditor | PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent | None | None | Signing the PECB Code of Ethics |
PECB Certified ISO/IEC 27001 Auditor | PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent | Two years: One year of work experience in Information Security Management | Audit activities: a total of 200 hours | Signing the PECB Code of Ethics |
PECB Certified ISO/IEC 27001 Lead Auditor | PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent | Five years: Two years of work experience in Information Security Management | Audit activities: a total of 300 hours | Signing the PECB Code of Ethics |
PECB Certified ISO/IEC 27001 Senior Lead Auditor | PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent | Ten years: Seven years of work experience in Information Security Management | Audit activities: a total of 1,000 hours | Signing the PECB Code of Ethics |
You will receive a certificate once you comply with all the requirements related to the selected credential.
Note: PECB Certified Individuals who do possess the Lead Implementer and Lead Auditor Credentials are qualified for the respective PECB Master Credential if they have taken 4 additional Foundation Exams which are related to this scheme.
To be considered valid audit experience, the candidate’s activities should follow best practices and include the following:
- Audit planning
- Audit interview
- Managing an audit program
- Drafting audit reports
- Drafting non-conformity reports
- Drafting audit working documents
- Documentation review
- On-site Audit
- Follow-up on non-conformities
- Leading an audit team
For more information about the PECB certification process, please refer to the Certification Rules and Policies.
General Information
- Certification and examination fees are included in the price of the training course
- Training material containing over 450 pages of information and practical examples will be distributed
- An attestation of course completion worth 31 CPD (Continuing Professional Development) credits will be issued to the participants who have attended the training course.
- In case of exam failure, you can retake the exam within 12 months for free
Fulfillment
Orders will be fulfilled by GRC Academy within 24 hours assuming the student possesses a valid PECB ID number. Register a PECB account to obtain a PECB ID number.
What Will You Learn
- Explain the fundamental concepts and principles of an ISMS based on ISO/IEC 27001
- Interpret the ISO/IEC 27001 requirements for an ISMS from the perspective of an auditor
- Evaluate the ISMS conformity to ISO/IEC 27001 requirements, in accordance with the fundamental audit concepts and principles
- Plan, conduct, and close an ISO/IEC 27001 compliance audit, in accordance with ISO/IEC 17021-1 requirements, ISO 19011 guidelines, and other best practices of auditing
- Manage an ISO/IEC 27001 audit program
Course Content
Training course objectives and structure | 00:06:16 |