IRCA Certified ISO 27001 Lead Auditor Training Course

A Lead Auditor is a position between Senior Auditor and Head of Division which makes sure and examines financial records. Ensuring that financial records are accurate and that taxes are paid properly and on time. They assess financial operations and work to help ensure that organizations run efficiently.

This course is guided by experienced Lead Auditors who have audited for almost Blue Chip clients. This program is important in becoming a registered Lead Auditor or Auditor. It provides you the skills which are required to assess the Information Security Management System of an organization.

This teaches you how to protect the information from a wide range of threats in order to ensure that the business is not breached in any way.

Information being a valuable asset and a building block and key to the growth of any organization needs to be suitably protected like any other important business asset. In the modern world this asset becomes crucial for success and maintaining credibility.

If this asset is compromised then the organization may have to face various threats and risks like brand image erosion, business disruption, financial and productivity loss etc. Information security is the protection of information from a wide range of threats in order to ensure business continuity, minimize business risk, maximize return on investments and increase business opportunities.

The course will be conducted by our experienced lead auditors, who have audited numerous organizations. This intensive course is a key requirement in becoming a registered auditor / lead auditor. The course is structured to provide the knowledge and skills required to assess the Information Security Management System of an organization with respect to the requirements of the ISO 27001:2013 standard.

This comprehensive five-day course comprises of case studies, training, role-plays to ensure that the participant thoroughly understands the role of an auditor / lead auditor and acquires the expertise needed to perform effective audits. Participants who successfully complete the course will be presented with an CQI-IRCA (International Register of Certificated Auditors) registered ‘Certificate Of Successful Completion.’

Outline:

• ISMS concepts and ISO 27001 standard
• ISMS concepts and benefits
• Risk assessment and management
• ISO 27001 process framework requirements
• ISO 27001 standard requirements
• ISMS documentation
• Auditing principles
• Auditing objectives
• Types of audits
• Process approach
• Roles and responsibility of auditors
• Auditors and lead auditors
• The auditors’ responsibilities
• The lead auditors’ responsibilities
• Auditors qualification and certifications
• Planning an audit
• Pre-audit planning
• Reviewing documentation
• Developing an audit plan
• Preparing checklists or working documents
• Communication factors
• Conducting an audit
• Opening meeting
• Collecting objective/audit evidence
• Effective interviewing techniques
• Identifying and recording nonconformities
• Preparing for the closing meeting
• Do’s and Don’ts of auditing
• Reporting audit results
• Conducting the closing meeting
• Preparing the audit report
• Distributing the audit report
• Corrective actions
• Corrective action responsibilities
• Follow up scheduling
• Monitoring corrective action
• ISO 27001 registration
• Choosing a registrar
• The registration process
• Surveillance audits
• Exercises / Roleplay (50% of course time)
• Written examination