Iso 27001:2022 Exemplar Global Accredited Lead Auditor Training Program

Course Content & Learning Outcome/ Objective :

• The background and general introduction to Information Security/ Cyber Security issues, the Challenge of sustainable development and strategic business drivers.

• The background to development of the Information Security management standards and the current status of the ISO 27001:2022

• To equip participants with the knowledge and skills needed to assess and report on the conformance and effective implementation of an Information Security management system in accordance with ISO 19011.

• Describe the responsibilities of an internal auditor and describe the role of internal audit in the maintenance and improvement of management systems, in accordance with ISO 19011

• Risk Management Process

• 93 Annexure Controls of ISO 27001:2022

• Explain the purpose and structure of ISO 27001, and explain the principles, process and selected techniques used for the assignment and management of Information / Cyber security/ Privacy

• Plan and prepare for internal audit gather audit evidence through observation, interview and sampling of documents and records. 

• Write factual audit reports that help to improve the effectiveness of the management system. 

• Suggest ways in which the effectiveness of corrective action might be verified

• Overview of ISO 27001:2022 

• Purpose and requirements of internal auditing of ISMS

• ISMS standards and certification body requirements for internal auditing 

• Environmental effects and training needs of ISMS auditors

• Preparation, performance, objective evidence, questioning and communication 

• Audit findings, reporting, corrective actions, follow-up and close-out and management review

• The background and general introduction to Information Security/ Cyber Security issues, the Challenge of sustainable development and strategic business drivers.

• The background to development of the Information Security management standards and the current status of the ISO 27001:2022

• Key elements of Information Security standard including 93 Annexure Controls of ISO 27001:2022

• Relevant International Accreditation Forum (IAF) and European cooperation for Accreditation (EA) interpretations and guidelines with which certification bodies are required to comply

• Types of ISMS audits and assessments including technical, functional and management systems and relevant audit methodologies.

• Triennial cycle and stages of the certification process 

• Cyber Security legislation relevant to international, national, regional and local legislation.

• Determination of risk and opportunities for Information Security Management System.

• Relevant International Accreditation Forum (IAF) and European cooperation for Accreditation (EA) interpretations and guidelines with which certification bodies are required to comply

• Types of ISMS audits and assessments including technical, functional and management systems and relevant audit methodologies. 

• Triennial cycle and stages of the certification process

• Cyber Security legislation relevant to international, national, regional and local legislation.

• Determination of risk and opportunities for Information Security Management System.